[EDIT] I misunderstood how DNS queries to addresses like 8.8.8.8 are routed. They do go through the VPN tunnel.
My question -- which I can't seem to delete, so I am rewriting -- had to do with wanting to make the XGS be my DNS server, through an SSL-VPN tunnel, because I mistakenly believed that DNS queries to 1.1.1.1 or 8.8.8.8 were being routed from the VPN client machine via the local internet and not via the SSL-VPN tunnel. I couldn't get it to work to the XGS, but I didn't need to.
It's also a rookie mistake to try something like 192.168.1.1 as the DNS server, which will apparently use the XGS when you're on the LAN, but will go to the local router when you are offsite via VPN, not going through the tunnel. (At least I think that's how it works. I didn't fully investigate once I realized my misunderstanding of the routing of 8.8.8.8, et al.)
This thread was automatically locked due to age.