Openvpn gets bypassed by windows 10? Security risk?


  1. Posts : 20
    Windows 10, Linux
       #1

    Openvpn gets bypassed by windows 10? Security risk?


    I've encountered a strange phenomena while testing openvpn on windows 10.
    I have tested both a client from my vpn provider, and the openvpn software.

    According to ipleak.net, everything is working correct, I got my vpn IP number.

    But! I left it connected to the vpn, and a few hours later, I needed a file from the computer (to my phone).
    So I did what I usually do, connect to the SFTP server and downloaded it.
    Here I should mention that I'm 15 miles (150km) from the computer, so it wasn't a local connection
    So I connected and download the file, then I suddenly realise that I shouldn't been enabled to make the connection, since my phone called out my non-vpn IP address, not my current vpn IP.

    I connected to my vnc and checked everything, and the SFTP server had been receiving it's ordinary connections, even thou it was connected to the vpn.

    So if windows 10 let's the "original" IP connect to the computer, how can we be sure that the vpn really works?

    Do I make any sense?

    On windows 7 you needed to connect to the VPN address, there was it impossible to connect to the "real' IP..

    This maybe not be a "question", but I'm curious if this is a local phenomena or others have detected this issue..
      My Computer


  2. Posts : 11,246
    Windows / Linux : Arch Linux
       #2

    Nemesis77 said:
    I've encountered a strange phenomena while testing openvpn on windows 10.
    I have tested both a client from my vpn provider, and the openvpn software.

    According to ipleak.net, everything is working correct, I got my vpn IP number.

    But! I left it connected to the vpn, and a few hours later, I needed a file from the computer (to my phone).
    So I did what I usually do, connect to the SFTP server and downloaded it.
    Here I should mention that I'm 15 miles (150km) from the computer, so it wasn't a local connection
    So I connected and download the file, then I suddenly realise that I shouldn't been enabled to make the connection, since my phone called out my non-vpn IP address, not my current vpn IP.

    I connected to my vnc and checked everything, and the SFTP server had been receiving it's ordinary connections, even thou it was connected to the vpn.

    So if windows 10 let's the "original" IP connect to the computer, how can we be sure that the vpn really works?

    Do I make any sense?

    On windows 7 you needed to connect to the VPN address, there was it impossible to connect to the "real' IP..

    This maybe not be a "question", but I'm curious if this is a local phenomena or others have detected this issue..

    Hi there

    @Nemesis77

    "Bak2Skule" for you I think !! -- 15 miles is approx 24 KM !!! not 500 !!!!! (if you meant 150 Miles that's still only 240 KM).

    VPN's do have outages from time to time

    If uploading a file from your remote computer why not just use any old FTP program and tunnel from the local computer you are using or simply set up to use RDP to the remote computer.

    If your remote computer's Internet address changes it's easy to automatically send an email to yourself say every 60 mins or so with the Internet address -- so set up RDP to the computer at home at the IP address.

    I'm sure Windows can do this but if you install the WSL on Windows a bash script like this can send email every so often.

    #!/bin/bash
    # Send email from bash
    # hrafn simple script to send simple email with your IP address (external)
    server="<email server>"
    port="<port>" ===< assume 25 -- this is for standard not auth not tls etc
    from="<your email address>"
    to="<email of receiver>"
    # get your public IP address
    myip="$(dig +short myip.opendns.com @ReSolver1.opendns.com)"
    # create message
    function mail_input {
    echo "ehlo $(hostname -f)"
    echo "MAIL FROM: <$from>"
    echo "RCPT TO: <$to>"
    echo "DATA"
    echo "From: <$from>"
    echo "To: <$to>"
    echo "Subject: Internet Addressl"
    echo " "
    echo "Your public internet address is "
    echo $myip
    echo " "
    echo "finished"
    echo "." <==you need this to indicate end of data stream for the SMTP mail server.
    echo "quit"
    }

    mail_input | netcat $server $port || err_exit

    save as a .sh type of file and make executable and ln to /usr/local/bin

    (can be modified for SSL / TLS / Password authentication -- just showing the basic idea)

    Then in crontab set job to run once per hr e.g one line as follows : 0 * * * * /your command

    then rdp to the IP address/ via tunnel (Putty) and to rdp port -

    If Home / remote computer is Linux then any VNC client from Windows to your Linux machine should work --You will need a vnc server on it as well) .

    Filezilla works fine as FTP from Windows to Linux remote system as wll as any SSH command if you aren't scared of command lines.

    If you want to be really clever try with SSH and transfer X server (GUI) so you'll need something like export :display=0 on the remote linux server --then nyou can also use a much better FTP GUI like krusader to FTP the files from Linux back to your local Windows machine.

    Private (not Work) VPN's IMO are only of any use to bypass geoblocking etc -- much better method is to use TOR

    Cheers
    jimbo
    Last edited by jimbo45; 05 Jan 2020 at 10:25.
      My Computer


  3. Posts : 20
    Windows 10, Linux
    Thread Starter
       #3

    Thx for the long answer, however, that's not the issue.

    Got static IP, that's why I want the VPN.
    15miles = 150km, metric system of course, the other system is insane

    I still need to connect to the VPN, but not use it on my windows machine..
    There must be someway to tell openvpn to NOT route anything..
      My Computer


  4. Posts : 11,246
    Windows / Linux : Arch Linux
       #4

    Nemesis77 said:
    Thx for the long answer, however, that's not the issue.

    Got static IP, that's why I want the VPN.
    15miles = 150km, metric system of course, the other system is insane

    I still need to connect to the VPN, but not use it on my windows machine..
    There must be someway to tell openvpn to NOT route anything..
    Hi there

    @Nemesis77

    NO WAY is 15 miles 150 KM !!!! we use metric system every day of our lives where I live.

    Just check conversion with GOOGLE
    !!!!!!

    We don't use systems based on length of old English monarch's (Henry VIII and earlier ) on length of his thumb / foot / arm as basis of measurement length, Pigs snouts for Volumes (hogsheads etc) or based on some Polish guy messing around with Salt and various mixtures of Water (of variable purity) for establishing Temperature scales -- (Farenheit) !!!!!

    If you really think 15 miles = 150 KM then all your other comments are meaningless !!!!!!! as this is a basic simple conversion -- 10 KM = 6 Miles --NO IF's No Buts !!!!!

    At least I can understand the Brits with their obsession with Cricket pitch length's (1 Chain -- I think is 22 yds) --they've even got the Afghans playing Cricket !!!!! -- beats hurling missiles and bombs all around but even their great game of Rugby has metricated itself!!!/

    Cheers
    jimbo
      My Computer


  5. Posts : 20
    Windows 10, Linux
    Thread Starter
       #5

    Well 1 metric mile it 10km, but that l that's not really the topic here..
      My Computer


 

  Related Discussions
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 15:01.
Find Us




Windows 10 Forums