Jump to content

Need help setting up PIA VPN

ggkthx
 Share

Recommended Posts

Ziltoid Racer

Ziltoid Racer

Posted
Posted

after retesting you are right, sometimes my ip is leaking with the push dns in config. i never noticed ssl was leaking my ip this way too. Fraser is right disable automatic dns and set the PIA dns ip's and my ip shows no where.

 

apologies for the mistake using push it seems slightly intermittent in results.... so use the R1 dns settings you can remove the push lines in config.

Link to comment
Share on other sites
ggkthx

ggkthx

Posted
  • Author
Posted

Yeah that's what I meant! Do so as well on your ISP hub

 

 

after retesting you are right, sometimes my ip is leaking with the push dns in config. i never noticed ssl was leaking my ip this way too. Fraser is right disable automatic dns and set the PIA dns ip's and my ip shows no where.

 

apologies for the mistake using push it seems slightly intermittent in results.... so use the R1 dns settings you can remove the push lines in config.

Roger that! And thanks for the find Ziltoid!

Link to comment
Share on other sites
Ziltoid Racer

Ziltoid Racer

Posted
Posted

hi guys i'm back again.....

 

The dns leak using manual config was annoying me because i know the push dns option used to work great but now for some reason it leaked.

 

After doing some research it turns out Windows 10 has a new feature called "Smart Multi-Homed Name Resolution" (which cannot be turned off) what this does is uses all interfaces to send DNS requests and it uses the fastest one so even when you have your push DNS set in the config windows 10 can and does use other interfaces on your PC for DNS requests.

 

To stop this you will need an extra push setting in your config with the ones i posted before, you need to add these 3 lines to your config:

 

push "block-outside-dns"
push "dhcp-option DNS 209.222.18.222"
push "dhcp-option DNS 209.222.18.218"

 

The above are using PIA DNS server ip's but you can use whatever you want.


 

Note: link-local ipv6 must be disabled in miscellaneous settings else it will leak when you are connected to VPN.

I have tested with the PIA ip's and the new block outside dns push and it works for me but could others test it too to make sure it works for everyone.

 

Thanks

Z

 

PS: adding the block line means you can now leave the R1 using your ISP DNS for all other devices connected to it but your device will use what you set in the push when connecting to your VPN manually.

Link to comment
Share on other sites
ggkthx

ggkthx

Posted
  • Author
Posted

hi guys i'm back again.....

 

The dns leak using manual config was annoying me because i know the push dns option used to work great but now for some reason it leaked.

 

After doing some research it turns out Windows 10 has a new feature called "Smart Multi-Homed Name Resolution" (which cannot be turned off) what this does is uses all interfaces to send DNS requests and it uses the fastest one so even when you have your push DNS set in the config windows 10 can and does use other interfaces on your PC for DNS requests.

 

To stop this you will need an extra push setting in your config with the ones i posted before, you need to add these 3 lines to your config:

 

The above are using PIA DNS server ip's but you can use whatever you want.

 

Note: link-local ipv6 must be disabled in miscellaneous settings else it will leak when you are connected to VPN.

I have tested with the PIA ip's and the new block outside dns push and it works for me but could others test it too to make sure it works for everyone.

 

Thanks

Z

 

PS: adding the block line means you can now leave the R1 using your ISP DNS for all other devices connected to it but your device will use what you set in the push when connecting to your VPN manually.

Tried it, now all the DNS test sites report that I'm using either Google's or OpenDNS's servers...

 

Rebooted the R1 and made sure ipv6 was disabled but still same results. Tested on Mac and iOS devices. Not sure if it makes a difference.

Link to comment
Share on other sites
ggkthx

ggkthx

Posted
  • Author
Posted (edited)

If they were conflicting i.e. not the same then that may cause the issue

 

They were the same addresses actually.

 

Noticed the R1 GUI slows down heavily especially after making multiple changes to the VPN config. In any case, I have rebooted the router and used the provided by Ziltoid and all seems good so far.

 

I mean, it's fine if I don't see my ISP's DNS in the test results right?

 

Edit: I take that back. The issue still happens occasionally throughout the last 24 hours. I did read somewhere that block-outside-dns option is only for Windows devices though.

Edited by ggkthx
Link to comment
Share on other sites
iAmMoDBoX

iAmMoDBoX

Posted
Posted

Fook yeah!

 

Sorry I know this is old but you need help setting it up PM me and I can do it through teamviewer. I've had similar issues, no more leaks for me.

Link to comment
Share on other sites
Ziltoid Racer

Ziltoid Racer

Posted
Posted

Sorry I know this is old but you need help setting it up PM me and I can do it through teamviewer. I've had similar issues, no more leaks for me.

why not let us all know how?

Link to comment
Share on other sites
iAmMoDBoX

iAmMoDBoX

Posted
Posted

why not let us all know how?

 

Why not let us all know what every individual person has as their unique network setup? Then I'll write a guide for each possibility.

Link to comment
Share on other sites
  • 1 year later...
Marc@Marc1

Marc@Marc1

Posted
Posted

I am trying to configure my VPN using Torguard 

I added the lines

push "block-outside-dns"
push "dhcp-option DNS 1.1.1.1"
push "dhcp-option DNS 1.0.0.1"

but my DNS still shows up as my ISP. 

I am on the XR500 any idea how to get my DNS to stop leaking/to be set to the DNS I need. 

Is there a way to set LAN DHCP side pushed DNS (where is the option)

If anyone could post a picture that would be awesome or if anyone has a solution.

Link to comment
Share on other sites
  • Administrators
Netduma Fraser

Netduma Fraser

Posted
  • Administrators
Posted
50 minutes ago, Marc@Marc said:

I am trying to configure my VPN using Torguard 

I added the lines

push "block-outside-dns"
push "dhcp-option DNS 1.1.1.1"
push "dhcp-option DNS 1.0.0.1"

but my DNS still shows up as my ISP. 

I am on the XR500 any idea how to get my DNS to stop leaking/to be set to the DNS I need. 

Is there a way to set LAN DHCP side pushed DNS (where is the option)

If anyone could post a picture that would be awesome or if anyone has a solution.

Hey, welcome to the forum!

You have a topic regarding this on the Netgear forum that I am responding to so let's keep it there for the moment and others can comment on it here if they wish to.

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing
×
×
  • Create New...