AWS VPN Client DNS Resolution issues

Question

After connecting the AWS VPN Client, I've found that DNS resolution will sometimes fail. This happens with some applications, like curl or kubectl, but will succeed for others, like dig, or Firefox/Chrome browsers. To workaround this issue, I've been clearing the local resolver cache, using the following command on my MacOS BigSur (v11.4): sudo dscacheutil -flushcache;sudo killall -HUP mDNSResponder

Is there a solution to this problem? Can this be fixed by adding some setting to the .ovpn file?

Answer

Hello,

Here are some issues related to MAC-OS- https://docs.aws.amazon.com/vpn/latest/clientvpn-user/macos-troubleshooting.html

Refer them for accurate troubleshooting. Also, to know in detail, your VPN client logs might help. If possible, please provide those or raise a case with AWS support and get those checked.

I would also recommend you to try Open VPN client and see if that is giving you the same errors that AWS Client is been giving to rule out any issues with the AWS Client.

Answer

The AWS VPN Client OVPN profile isn't compatible with OpenVPN, as it has some AWS-specific settings, baked into the binary, that break OpenVPN client (like auth-federate, which OpenVPN has no plans to make compatible).

I'll try reaching out to AWS support.

Answer

Yes. Please provide the logs to them as mentioned above in the link along with the configuration.

AWS VPN Client DNS Resolution issues

Conteúdo relevante