[neerav]

I have set up a few SSIDs including guest networks. Also have set up VPN client for all connections and a hosts file-based ad blocking as per the wiki entry. Everything works swimmingly.

To force all clients including guests to use my router and ad-blocking as their DNS, I have used "dhcp-option=6,192.168.1.1" in Additional DNSMasq Options.

For rare use because some site may only work through an unrestricted connection (non-vpn, non-adblocked), I have created an SSID that bypasses the VPN. It works fine. I need to also bypass the local DNS because of the ad-blocking. I have put 207.68.22.222 as Optional DNS Target for this unrestricted SSID, however as expected above, the DNS is still handed out as 192.168.1.1.

Is there a DNSMasq option I can use to force a different DNS for JUST this one SSID? Because this SSID is just for my use, an option to unforce the dhcp-option 6?

Don't want to manually change the DNS on the device(s) because I need to have it automatically go back to 192.168.1.1 when using the other SSIDs.

Using 32170M kongac on an R8000.

[neerav]

Policy Based Routing. I put IP addresses in CIDR format of EVERYTHING I want to go through the VPN, and then leave out the IP range of the bypass-SSID.

[neerav]

I would appreciate if you move your post to a new thread, so I can get an answer to my original post. PM me your new thread and I will try to help you there.

[neerav]

Figured it out.