Leaderboard

@wintermute1912 If traffic passes through the tun interface it's in the tunnel, so even if you want to reach 3rd parties DNS servers, the queries and their replies are tunneled, it's not a DNS leak. Even worse: in this way you will never find DNS leaks, even if they are really occurring. To verify effectively you need to check traffic from the physical network interface. Unencrypted DNS queries from the physical network interface, if not blocked by the firewall, hint to DNS leaks for real. Kind regards

Don't use Deluge. For whatever reason which I have not had time to properly investigate it gives you away and you get replay attacks. The following torrent clients run fine for me: qbittorrent (latest version installed via PPA: https://www.qbittorrent.org/download.php Transmission (native install on Ubuntu 16.04.5) rtorrent (probably the safest but text based interface only) Also change the TCP port you have mapped quite frequently. And check you're not getting DNS leaks: sudo tcpdump -i tun0 -n "port 53" If you see any other IP address than the AirVPN DNS server you have leaks