That is not reassuring that means your system is susceptible to the Tunnelcrack exploit as your VPN does not fully encapsulate your traffic and you are leaking data.
Tell your company IT what you’ve seen, this means not just you but everyone at the company is susceptible to this and your at risk for an attack.
Well I left google services pointed in Argentina before and Im also working from home. I wont bore with details but google.com was in Spanish on my work PC connected to the VPN. All this to say your company nor mine re-route DNS thru their VPN it sounds like. Its a bit different than a personal VPN.
That’s a good idea. There are some services that can’t be reached without the VPN so I may try that.
The more I think about the more I think you’re right that they may only some services routed through the VPN to reduce load.
You can also try to access those services you expect to go through VPN while checking the querylog in pihole to ensure they don’t show up there.