Jump to content
Not connected, Your IP: 3.139.233.93
AirVPN
Sign in to follow this  
Followers 0
diohsdpgwogj

Tor over VPN & Comodo settings

By diohsdpgwogj, ... in Eddie - AirVPN Client

Recommended Posts

diohsdpgwogj    0

diohsdpgwogj
Posted ...

Hello!

I have set up my Comodo firewall as per the instructions available in here: https://airvpn.org/index.php?option=com_kunena&func=view&catid=3&id=3405&Itemid=142 and the setup appears to be working fine, DNS leak tests look good and no traffic goes through when the VPN is down.

However, I can't get the Tor Browser Bundle to work. When I try to start Tor it tries to connect to ports 9051 and 52*** (last three digits vary) TCP on my computer (127.0.0.1) and even though I allow these connections Tor does not start successfully. Should I make changes to the firewall configuration or add some port forwarding settings to be able to use Tor while connected to the VPN? My Comodo firewall was a clean install and the only rules and networks set in the program are those listed in your guide.

Thank you for your help.

Share this post

Link to post

Staff    9968

Staff
Posted ...

Hello!

I have set up my Comodo firewall as per the instructions available in here: https://airvpn.org/index.php?option=com_kunena&func=view&catid=3&id=3405&Itemid=142 and the setup appears to be working fine, DNS leak tests look good and no traffic goes through when the VPN is down.

However, I can't get the Tor Browser Bundle to work. When I try to start Tor it tries to connect to ports 9051 and 52*** (last three digits vary) TCP on my computer (127.0.0.1) and even though I allow these connections Tor does not start successfully. Should I make changes to the firewall configuration or add some port forwarding settings to be able to use Tor while connected to the VPN? My Comodo firewall was a clean install and the only rules and networks set in the program are those listed in your guide.

Thank you for your help.

Hello!

You need to add the following rule:

Allow TCP Out From MAC Any To MAC Any Where Source Port Is Any And Destination Port Is 443

which is to allow connections to the TOR network before you connect to an Air server.

Please not that the above rule introduces a potential leak: if the VPN connection goes down, your browser will still be able to connect to https web sites (outbound port 443 TCP).

Kind regards

Share this post

Link to post

bubbba    3

bubbba
Posted ...

I was reading this and since I have recently started using Comodo (Recommended Here) and playing with the rules (it's new to me). Would it not be true that if you changed the rule to this, it would protect you if the VPN adapter did go down. This is how I have approached it and it seems to work. Please correct me if I am wrong so that I can keep learning.

Allow TCP Out From MAC [Mac Address of your VPN Adapter] To MAC Any Where Source Port Is Any And Destination Port Is 443

Regards,

Bubbba

Share this post

Link to post

Staff    9968

Staff
Posted ...

I was reading this and since I have recently started using Comodo (Recommended Here) and playing with the rules (it's new to me). Would it not be true that if you changed the rule to this, it would protect you if the VPN adapter did go down. This is how I have approached it and it seems to work. Please correct me if I am wrong so that I can keep learning.

Allow TCP Out From MAC [Mac Address of your VPN Adapter] To MAC Any Where Source Port Is Any And Destination Port Is 443

Regards,

Bubbba

Hello!

Definitely correct. Please ignore the previous Admin post (it will be deleted).

Kind regards

Share this post

Link to post

pj    72

pj
Posted ...

I was reading this and since I have recently started using Comodo (Recommended Here) and playing with the rules (it's new to me). Would it not be true that if you changed the rule to this, it would protect you if the VPN adapter did go down. This is how I have approached it and it seems to work. Please correct me if I am wrong so that I can keep learning.

Allow TCP Out From MAC [Mac Address of your VPN Adapter] To MAC Any Where Source Port Is Any And Destination Port Is 443

Regards,

Bubbba

Hello!

Overrule :) Your approach should not work, because the TUN/TAP adapter is still down when you first connect to the TOR network (it's OpenVPN over TOR, so before establishing an OpenVPN connection you need to connect to TOR)...

Previous admin message restored.

Kind regards

Share this post

Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
×
  • Security Check
    Play CAPTCHA Audio
    Refresh Image
Sign in to follow this  
Followers 0
Go To Topic Listing
×
×
  • Create New...