search

vpn-kill-switch / killswitch

VPN kill switch for macOS
https://vpn-kill-switch.com
BSD 3-Clause "New" or "Revised" License
165 stars 15 forks source link

DNS leak #8

Closed jeffrey182 closed 7 years ago

jeffrey182 commented 7 years ago

The PF rule for port 53 will allow DNS queries when VPN goes down. DNS can leak with VPN down.

nbari commented 7 years ago

Hi @jeffrey182 that's partially correct also some other services, check this other issue https://github.com/vpn-kill-switch/killswitch/issues/4

At the end depends on how you set /configure your resolvers but the reason to keep it open is that could be that your VPN provider will not provide DNS's and you could stop resolving.

jeffrey182 commented 7 years ago

Thanks! I will configure as you suggested in issue #4. It does seem to me that stopping resolving and other services is the expected and desired behavior of triggering a kill switch.

nbari commented 7 years ago

Hi @jeffrey182 if is ok for you I will close this, if found something else please create a new one.

nbari commented 6 years ago

Hi @jeffrey182, just in case latest version 0.5.0 blocks by default ping + DNS