[SOLVED] dns leaks VPN

[SOLVED] dns leaks VPN

Postby nigelc » Oct 14th, '15, 07:25

Hello,
I have got a free trail of a vpn "nordvpn.com" It seems to work, but when I do DNS leak test is shows the old ip address.
Is there a way to clear it all out?
cheers.
Last edited by nigelc on Nov 11th, '15, 02:39, edited 1 time in total.
nigelc
 
Posts: 266
Joined: Aug 28th, '11, 09:35

Re: dns leaks VPN

Postby wintpe » Nov 10th, '15, 14:12

the problem identified with a dns leak test is that while your actual tunnel to http://www.myprivatesite.com is all encrypted inside the tunnel,
the lookups for http://www.myprivatesite.com are all being forwarded directly to the ip address in your resolv.conf.

now if your dhcp router is setting the resolv.conf entry to say 192.168.1.1 ie a dns proxy, it then passes that lookup directly to your isp assigned
dns resolver, ie the dns server that you will find if you google say tiscalli dns servers, for example, if that was your isp.

so someone like G*H* or whoeever who is looking at what you are doing on the internet wont just look at port 80 and 443, they will look at all ports, and even though your desktop is forwarding all that "myprivatesite" traffic so whats contained in that site cant be seen, it does not stop all the dns requests
going to your isp's dns servers.

so how do you avoid this.

well some vpn providers will give you a dns server ip that is routable via there vpn, and you should update your dns settings to use that.

or just set your dns to 8.8.8.8, as that will also more than likely be routable via the vpn.

to hard set your dns and override dhcp , you need to edit the /etc/sysconfig/network-scripts/ifcfg-NICADAPTERNAME and add
PEERDNS=no

then edit /etc/resolv.conf and make sure nameserver is set to 8.8.8.8 instead of 192.168.1.1 or your isps dns server

and then restart your network or computer.

before you star privatebrowsing check with

traceroute 8.8.8.8 and see that its going down tun0

the benefit of googles dns 8.8.8.8 is that its also useable when you are not privatebrowsing, im not sure if your vpn provided dns is

regards peter
Redhat 6 Certified Engineer (RHCE)
Sometimes my posts will sound short, or snappy, however its realy not my intention to offend, so accept my apologies in advance.
wintpe
 
Posts: 1204
Joined: May 22nd, '11, 17:08
Location: Rayleigh,, Essex , UK

Re: dns leaks VPN

Postby nigelc » Nov 11th, '15, 02:36

It is now fixed , but I cannot remember what I did.

The option on network settings where it says " Get DNS servers from DHCP" must changed to a manual configuration.
So instead of coming from the isp it comes from the vpn.

The vpn support gave these numbers dns 1: 198.7.63.141
dns 2: 78.46.233.24
nigelc
 
Posts: 266
Joined: Aug 28th, '11, 09:35


Return to Networking

Who is online

Users browsing this forum: No registered users and 1 guest

cron