The best practice of the openvpn is adding the two routes ( and to avoid replace the original default route. For this you can use the route options in the open vpn client configuration file: route route

The Subnet Mask = & Default Gateway = are to be expected. That is what I see for my IKEv2 connection That basically says route all packets down the VPN tunnel - not split tunneling. Because your DNS server is, which presumably is behind your internal router - look at the router's settings 1st. solved: Double Connection with default gateway Apr 19, 2010 How can I configure Advanced VPN settings? | SonicWall

Routing All Traffic Through a VPN Gateway on Linux

Vista: local only with default gateway Jun 26, 2008

Dec 30, 2017

Dec 30, 2017 fix default gateway - May 09, 2014