In this article:
Applicable to:
- Twingate Client (all operating systems)
Overview
System DNS servers with IPs overlapping the CGNAT IP range used by Twingate, cause DNS routing conflicts. As such, DNS resolution and therefore connections to the internet are failing. This affects all sites, not just the ones defined as Twingate Resources.
Check System DNS Configuration
View interfaces and DNS servers using the commands below.
Windows
ipconfig
Linux
ifconfig
macOs
scutil --dns
Local DNS Overlapping CGNAT IP Range used by Twingate.
Our Client uses IPs inside the 100.64.0.0/10
CGNAT range to communicate with the Connector and eventually the Resource. This renders it incompatible with DNS IP that fall within the same IP range.
More details on how we interact with DNS can be found in our documentation.
Solution/Workaround
Manually change system's primary DNS servers to a servers that don't overlap with Twingate's CGNAT range.
For example, you can use free public DNS: Google (8.8.8.8
& 8.8.4.4
), Quad9 (9.9.9.9
& 149.112.112.112
) or Control D (76.76.2.0
and 76.76.10.0
).