OpenVPN by default is fail-dangerous - if it goes wrong, your traffic goes uncloaked. Is there a way to fix that?
-
-
Replying to @ciphergoth
you can use iptables to block direct traffic (but yes, it's slightly annoying to set up)
2 replies 0 retweets 0 likes -
Replying to @tehjh @ciphergoth
I have a VPN between my machines; they block all traffic from/to VPN IPs on non-VPN interfaces
1 reply 0 retweets 0 likes -
Replying to @tehjh @ciphergoth
on Linux, if you want VPN for everything, you could also move the real interface into a netns with openvpn and connect via veth
1 reply 0 retweets 1 like -
Replying to @tehjh @ciphergoth
or, without veth, move the tun interface into the initns so that non-VPN traffic to the VPN server's IP will still be tunneled
1 reply 0 retweets 0 likes
Replying to @tehjh @ciphergoth
(one of the most annoying things about normal OpenVPN setups IMO: traffic to services on the VPN server can't be tunneled)
6:08 PM - 3 Dec 2016
0 replies
0 retweets
0 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.