IP Leaking
Posted: Fri Mar 04, 2011 12:54 pm
Hi, Sorry for asking a question on my first post, but I'm no expert.
I am using a openVPN roadwarrior type setup. I have a openVPN server setup on a VPS to masqurade my clients internet connection through. As such the only IP that is visible to the internet from my client should be the VPS's IP.
Im having a problem however, that if my clients internet connection drops out and disconnects for a period OR the VPS server becomes inaccessable to the client somehow the pre-VPN connection default route is finding its way back into the routing table and the client is then connecting to the internet again but not through the VPN. I am using redirect-gateway so when the VPN connects that default client machine route is deleted, but it's still re-appearing sometimes when the connection goes for a period of time.
I guess this has something to do with the SIGUSR1[soft,ping-restart] received, process restarting - and openVPN re-entering the default_gateway to the routing table, in able to connect to the server VPN again.
How can this be avoided completely. If I put: ping-restart 0 onto the client and delete and ping-restart or similar from the server config would that make the client process restarting and as such openVPN adding the default_gateway to the client routing table totally impossible?
What i'd like to achieve is under absolutely no circumstances what so ever my client connecting to the internet without going through the VPN, after me running the openVPN client and it initially connecting to the openVPN server of course.
Thanks for any tips. Perhaps there's an easier way to do this?
I am using a openVPN roadwarrior type setup. I have a openVPN server setup on a VPS to masqurade my clients internet connection through. As such the only IP that is visible to the internet from my client should be the VPS's IP.
Im having a problem however, that if my clients internet connection drops out and disconnects for a period OR the VPS server becomes inaccessable to the client somehow the pre-VPN connection default route is finding its way back into the routing table and the client is then connecting to the internet again but not through the VPN. I am using redirect-gateway so when the VPN connects that default client machine route is deleted, but it's still re-appearing sometimes when the connection goes for a period of time.
I guess this has something to do with the SIGUSR1[soft,ping-restart] received, process restarting - and openVPN re-entering the default_gateway to the routing table, in able to connect to the server VPN again.
How can this be avoided completely. If I put: ping-restart 0 onto the client and delete and ping-restart or similar from the server config would that make the client process restarting and as such openVPN adding the default_gateway to the client routing table totally impossible?
What i'd like to achieve is under absolutely no circumstances what so ever my client connecting to the internet without going through the VPN, after me running the openVPN client and it initially connecting to the openVPN server of course.
Thanks for any tips. Perhaps there's an easier way to do this?
