[OpenWrt Wiki] VPN (Virtual Private Network)
openwrt.org › docs › guide-userAug 16, 2021 · You may want to run a VPN client on your router to encrypt your connection to the internet and prevent your ISP from snooping on your traffic and DNS requests, which in some countries is now legal for ISPs to monetize, as well as meddling with DNS requests or HTTP traffic. In order to use a VPN client on your router, you would need to obtain credentials to a corresponding VPN server.
[OpenWrt Wiki] DNS and DHCP examples
openwrt.org › docs › guide-userDec 28, 2021 · OpenWrt uses peer DNS as the upstream resolvers for dnsmasq by default. These are typically provided by the ISP upstream DHCP server. You can change it to any other DNS provider or a local DNS server running on another host. Use resolvers supporting DNSSEC validation if necessary. Specify several resolvers to improve fault tolerance.
[OpenWrt Wiki] OpenVPN extras
openwrt.org › docs › guide-userDec 05, 2021 · Utilize DNS over VPN to prevent DNS leak on VPN client. Disable peer DNS and configure a VPN-routed DNS provider on OpenWrt client. Modify the VPN connection using NetworkManager on Linux desktop client. nmcli connection modify id VPN_CON \ ipv4.dns-search ~. ipv4.dns-priority -50 \ ipv6.dns-search ~. ipv6.dns-priority -50