Thanks for the sugestion. They were helpful.
As I understand it, you direct the clients that go through routerOS. Right?
When is the Mikrotik itself that needs to do this query? Would it work?
Imagine that Mikrotik would need to query the DNS names of my network, for any type of validation. Then in the routerOS DNS server settings, the VPN DNS server address would be placed.
I’m more in favor of DNS names than using IP addresses.
I’m sure Mikrotik doesn’t do this query because I’m not specifying the source IP of my LAN which is allowed in the vpn policy. This in IPsec.
As it is a system resource, I have to do something in the firewall to get it to exit correctly. At least that I imagine.