I have a tailscale exit node set up in a Linux VPS. On that VPS I’ve also installed pihole to act as DNS for the tailnet.
When I run a DNS leak test from a machine on the tailnet I get confusing results. I appear to be using servers in my home country (also my current location).
The servers don’t say they are owned by my ISP but I suspect that’s the case. Its the only way the machine could have got their addresses. I’ve tried on multiple machines to test this.
In Tailscale settings each machine is configured to use Tailscale DNS. Tailscale has been told to use Quad9 in the event pihole is unreachable. Needless to say, Quad9 is not located in my home country.
I’m a noob to both Tailscale and pihole so I’m probably missing something obvious?
Which test are you running exactly?
Two things I would check:
Resolvers configured in PiHole
Test using browser with DNS over HTTPS instead of the system configuration
I’m using this checker.
Did a bit more digging - the two companies listed (woodynet and i3d) are both linked to quad9. But - I had assumed quad9 always resolved in Switzerland. Woody resolves in my home country, i3d in the same country as the VPS.
I3d I can understand. Woodynet resolving in my own country is very odd.