hugomueller 13 Posted ... I m connected to Talitha and all DNS is going trough the VPN.I took a look at my windows firewall (which i enabled due to "network lock") and it shows a lot of these: date time action protocol src-ip dst-ip src-port dst-port size tcpflags tcpsyn tcpack tcpwin icmptype icmpcode info path 2015-06-29 11:33:34 DROP UDP 192.168.2.94 54.172.47.69 58683 3478 0 - - - - - - - SEND 2015-06-29 11:33:35 DROP UDP 192.168.2.94 54.172.47.69 58683 3478 0 - - - - - - - SEND 2015-06-29 11:33:37 DROP UDP 192.168.2.94 54.172.47.69 58683 3478 0 - - - - - - - SEND 54.172.47.69 --> is an amazon IP After allowing this IP, my IP get leaked by webrtc. (tested on https://ipleak.net/)Can anyone explain this behaviour? Quote Share this post Link to post
InactiveUser 188 Posted ... I think I can:The Windows Firewall, as configured by the Network Lock, correctly blocked untunneled connection attempts to 54.172.47.69.Sounds like WebRTC - let's see what this IP is up to: stun.services.mozilla.com. 300 IN CNAME stun1.webrtc.us-east-1.prod.mozaws.net.stun1.webrtc.us-east-1.prod.mozaws.net. 60 IN A 54.172.47.69 Sure enough, it's one of Mozilla's STUN servers hosted on Amazon AWS. If ...a website makes use of your browser's WebRTC implementationyour firewall allows direct connections to one of the STUN servers and ...you haven't disabled WebRTC in your browseryour IP will leak as you experienced. Solutions:Don't touch Air's firewall setup.Regardless of the particular firewall you use, never allow any direct connections between your local network / local router and a remote host - other than to Air's servers, of course.Disable WebRTC in Firefox. Open about:config, find the following entry and set it to false:media.peerconnection.enabled Quote Hide InactiveUser's signature Hide all signatures all of my content is released under CC-BY-SA 2.0 Share this post Link to post
Uberhare 0 Posted ... I get the same with Chome - amazon dns. How do I fix? Quote Share this post Link to post
zhang888 1066 Posted ... You can install uBlock Origin. http://www.ghacks.net/2015/07/02/you-can-block-webrtc-from-leaking-your-ip-now-in-ublock-origin/https://github.com/gorhill/uBlock/releases Quote Hide zhang888's signature Hide all signatures Occasional moderator, sometimes BOFH. Opinions are my own, except when my wife disagrees. Share this post Link to post
Not connected, Your IP: 3.144.106.207
Online: 25219 users - 299869 Mbit/s total BW