I am using a tester version of whonix (18.104.22.168) making use of the VPN-firewall functionality to safely chain a VPN through whonix-gateway.
My setup is as follows: host → whonix vm → ssl tunnel (stunnel4) → vpn → tor
On my host have a configured dns settings to use a public dns. When i run a dns leak test on whonix-workstation (such as ipleak.net), the public dns’ servers show up in the results. How is this explained? Is this a leak?