Recent content by Swinson

  1. S

    Unbound Unbound DNS VPN Client w/policy rules

    Honestly I have no idea. I can look into it though. This is just kind of a hobby project so I can apply what I’m learning in my classes/from the wonder that is the internet. Sounds interesting though.
  2. S

    Unbound Unbound DNS VPN Client w/policy rules

    Yep just look at the IP sets. The name of your ipset in this case is WAN_IP so the only thing in that set would be whatismyip.com. Basically the “ dnsmasq=“ starts a comma separated list of domains so you can add as many or as few as you want to that list. I just use it for stuff that blocks the...
  3. S

    Unbound Unbound DNS VPN Client w/policy rules

    @Kingp1n I have noticed slow downs due to the pandemic and the openings/closings but I have not observed any slowdowns as it relates to script. edit: I will note that my vpn speeds are capped by my en/decryption limitations so my speed tests for the vpn are relatively static. I can pretty much...
  4. S

    Unbound Unbound DNS VPN Client w/policy rules

    Thanks for the lag update. I hadn’t noticed anything on my end but I was keeping an eye on it since I’ve been tweaking things. Glad you got it figured out. Update on my end: The extra server line has been removed since the unbound.postconf seems to be running without issue. Additionally I’ve...
  5. S

    Unbound Unbound DNS VPN Client w/policy rules

    Automatic reboot this morning and nothing would load. I checked my dnsmasq.conf and the unbound.conf definitely ran. So that’s not the issue but it didn’t run on reboot yesterday so obviously there is something else up the chain. My logs have not helped so far but I’m going to keep digging...
  6. S

    Unbound Unbound DNS VPN Client w/policy rules

    Update: reboot worked fine I poked at the unbound.postconf and it look like the “servers-file=/xxx/xxx”gets deleted from the dnsmasq.conf so that’s where the leak is coming from. I moved the “sh ../unbound.postconf $1” right under the “. /opt/...post-conf.div” line when I re-enabled so...
  7. S

    Unbound Unbound DNS VPN Client w/policy rules

    @Kingp1n I kept the added server line but re-enabled the unbound.postconf. I restarted dnsmasq the server line is in there twice now which doesn’t seem to be a problem so far and I’m currently not showing a leak. I’ll do some reboots and report back if I find anything.
  8. S

    Unbound Unbound DNS VPN Client w/policy rules

    Hmm yeah it appears I’m showing 2 one is the vpn the other is cloud flare. So I think that line not being in the config is what the problem was but I’ll need to check out what all the unbound.postconfig does because disabling it seems to be a no go.
  9. S

    Unbound Unbound DNS VPN Client w/policy rules

    Yeah that’s the one. and yes just put the server line at the end of /jffs/configs/dnsmasq.add the default unbound is localhost on port 53535. If you want to verify its in the first section of the unbound config under interface and port.
  10. S

    Unbound Unbound DNS VPN Client w/policy rules

    Just to add a bit to kingp1n response. With regard to Netflix/other streaming services they don’t want you to use a vpn because their content agreements vary country to country. That’s not to say you can’t connect to these services with a vpn but they make it hard and constantly update methods...
  11. S

    Unbound Unbound DNS VPN Client w/policy rules

    Yeah it should delete them right off the bat when the script runs but I guess on my router the script would start, delete the rules, then start pinging the tunnel, then the vpn restart would run it again before the rules got added so in rare instances it could add two sets of rules. If it’s not...
  12. S

    Unbound Unbound DNS VPN Client w/policy rules

    I’ve had issues in the past copying and pasting iptables rules where there are invisible trailing control characters. It might be worth trying to type everything out or go through and make sure there aren’t any invisible characters by selecting every after the last visible character on each line...
  13. S

    Unbound Unbound DNS VPN Client w/policy rules

    @Kingp1n I noticed the rules appearing twice in my iptables after a reboot. So apparently calling that at the beginning of the script is a bit too early. You might want to add the line: Delete_Rules At the top of the add rules function. Just make it the first line of the Add_Rules function so...
  14. S

    Unbound Unbound DNS VPN Client w/policy rules

    I’m glad it’s been working for you! I didn’t really think to list anything for donations but you are welcome to use my PayPal or cashapp. I certainly appreciate any donation to the college coffee fund but definitely don’t feel obligated. Cheers, -Swinson PayPal: http://paypal.me/SwinsonT...
  15. S

    Unbound Unbound DNS VPN Client w/policy rules

    All you should need to is remove the lines from the vpnclient1-route-up and vpnclient1-pre-down and reboot. Before you do that you can run the script with the “stop” argument to remove the iptables rules and remove the vpn as the outgoing interface. You shouldn’t need to do this as a reboot...
Top