Hello.

I have an ikev2 tunnel to my vpn isp (mikrotik ikev2 client) like described here with option 2: https://wiki.mikrotik.com/wiki/IKEv2_EA ... d_RouterOS.
Every thing is fine, but my dns request to this specific dns names which are stored in firewall access list, still are requestes by local dns server from isp (dns leak) and not as expected through dns over vpn.

I think, there is only a firewall rule missing, but my attempts went awry.

Did anyone had this problem to and solved it?

thx and regards

Hey. Did you add a static route to your dns server through the tunnel?

Do have a manually entered IP-address entered in /IP DNS? Also under PPPoE remove the ticked box for use peer DNS.

Restart PPPoE and you should have now DNS from NordVPN. If you point the /IP DNS also to the addresses seen on the IKEv2 connections then the router also use NordVPN.

Hey. Did you add a static route to your dns server through the tunnel?

no thats not possible, cause of dynamic ip addresses! And there is no interface...

Do have a manually entered IP-address entered in /IP DNS? Also under PPPoE remove the ticked box for use peer DNS.

Restart PPPoE and you should have now DNS from NordVPN. If you point the /IP DNS also to the addresses seen on the IKEv2 connections then the router also use NordVPN.

i am not using pppoe!
dns servers from ike vpn appear dynamicaly on each dial in.

And what does the DHCP state as DNS server? It should be the router itself.

And what does the DHCP state as DNS server? It should be the router itself.

Yes

Then it is up to you to find out where that DNS IP address from your ISP is coming from.