Network Manager w/ dnsmasq Dies when VPN-ing

Status changed to 'Confirmed' because the bug affects multiple users.

Can we safely assume that bug 1675820 is a duplicate of this one?

In that case, dnsmasq seems to operate correctly. In fact, setting the domain server with an explicit dbus command, that is

sudo qdbus --system org.freedesktop.NetworkManager.dnsmasq /uk/org/thekelleys/dnsmasq \
    org.freedesktop.NetworkManager.dnsmasq.SetDomainServers "(" "8.8.8.8" ")"

makes the trick and gets name resolution operate correctly. It looks like the fault is on network manager not passing the domain servers to dnsmasq via dbus in the correct way (or at all).

Was a test of this sort practised in this case?

Sergio,

No, however I would be happy to test later today. The primary reason for my
having a backup local resolving bind9 was just for cases like this, but I'll test the DBUS method in a few hours and get back to you

Interesting, I can't reproduce with standard WPA2 wifi connections.

I wonder if it's specific to the combination of WPA2 Enterprise (with custom DNS settings in the system) and then that being overridden by the VPN and that causes some breakages.

I'll test in a few hours when I'm on such a network where I can test it. (At my apartment, I have a WPA2 Enterprise network, but that seems to properly show the right DNS and such... and I can't VPN to the apartment when I'm *on* the Apartment's networking).

Sergio,

Also, I'm not 100% certain the other bug is not a dupe of this one, because Yakkety. Their workarounds of restarting dnsmasq, etc. still didn't work on a 16.04 system (even restarting Network Manager didn't help - dnsmasq was still dead for *everything*), and now I'm getting issues where the domain is set proper with search domains, but I'm 'refused' from querying the domain assigned.

The DNS servers that *should* be assigned by the VPN are properly handling the requests, so I don't know what's going on and will check more later. (Falling back to local `bind9` resolver in the mean time)

Some additional (but minor) information:

After a fresh boot, everything appears to work perfectly as expected for the -first- connection to the VPN. That is to say, the DNS servers pushed from the OpenVPN server are used to resolve VPN domains, and all is well.

After a subsequent disconnect and reconnect, it no longer works. Direct connections to IP addresses are fine, but resolution refuses to function properly.

I've worked around this for now with the sub-optimal method of hardcoding a resolver:

   echo "server=/[DOMAIN]/[RESOLVER IP]" > /etc/NetworkManager/dnsmasq.d/vpn.conf

... and restarting dnsmasq.

This seems to imply the problem lies somewhere in dbus communication, as Sergio mentioned above.

Hi everybody,

I had this problem too on LinuxMint 18 (based on 16.04).
I solved the problem by reverting the network-manager package to the version 1.2.2 (instead of 1.2.6) using synaptic.

Maybe it can help someone
Cheers

Hi, I had the same problem on Linux Mint 18.1
First time i start openvpn connexion all is ok. But if i stop it and start again via networkmanager, there are no DNS (but ping ip is ok).
A reboot of the computer make dns come back.

Or i found a temporary solution, modify the file /etc/NetworkManager/NetworkManager.conf
and comment the line #dns=dnsmasq
After this i stop / start many times openvpn connexion via network-manager and it works well.

Status changed to 'Confirmed' because the bug affects multiple users.