AirVPN as OpenVPN client on GhostBSD.

[globetrotterdk 0]

I am trying to get AirVPN to work with GhostBSD. GhostBSD has a GUI OpenVPN Administration widget (?) I have downloaded the necessary .ovpn file as well as the individual certificates. Unfortunately, while I am getting a green indicator, a visit to mullvad.net tells me that only my authentic location is detected. What am I doing wrong?

General
protocol - udp
device    - tun
remote - se.vpn.airdns.org
verbosity level - 3
port - 433

Certificate
SSL/TLS client active
CA: /path/to/file/
Cert: /path/to/file/
Key: /paath/to/file/
Tls-Auth: /path/to/file/

Options
No Bind
Persist Key
Persist Tun


 

[OpenSourcerer 1359]

That Pull option is not set, I believe it corresponds to --pull which is a necessity.

--pull This  option  must  be used on a client which is connecting to a multi-client server. It indicates to OpenVPN that it should accept options pushed by the server, provided they are part of the
             legal set of pushable options (note that the --pull option is implied by --client ).

Not sure if your app implies --client. I'd say, try ticking Pull.

[globetrotterdk 0]

That solved the connection problem, however "connection check" at mullvad.net shows leaking DNS servers and leaking WebRTC IPs... I will try posting a new topic tomorrow, if I don't get that sorted.

[OpenSourcerer 1359]

Nah, you can stay here with that.

Be advised that OpenVPN is not responsible for adjusting global system-wide DNS; as such, it does not edit /etc/resolv.conf, use resolvectl or other means to alter DNS settings. It only sets the DNS servers of the tunnel interface (received with --pull).
It also doesn't touch the configuration of other applications, like a firewall or a browser to block or disable WebRTC. It's, in the strictest UNIX manner, a software doing one thing great, which is building a tunnel to a VPN server. There are funny options like --block-outside-dns, but I'm not sure why it's there if it only works on Windows.