Ξ welcome to cryptostorm's member forums ~ you don't have to be a cryptostorm member to post here Ξ
∞ take a peek at our legendary cryptostorm_is twitter feed if you're into that kind of thing ∞
Ξ we're rolling out voodoo network security across cryptostorm - big things happening, indeed! Ξ
Ξ any OpenVPN configs found on the forum are likely outdated. For the latest, visit GitHub Ξ

How to setup DNS on Ubuntu?

A core mission of cryptostorm is ensuring consistent, reliable network security with minimal fuss & drama. From DNS-based services like our DeepDNS in-browser native .onion/.i2p site access, through grounbreaking research on IP6 leakblocking, & to firewall-based structures to enable "fail-closed" security, this is where we discuss & develop cryptostorm-style leakblock tech.

Topic Author
Anon4d3

How to setup DNS on Ubuntu?

Postby Anon4d3 » Mon Jun 19, 2017 12:07 pm

Hello,

I'm new here, it seems that on Ubuntu when I connect to the VPN the DNS leaks, how do I fix that? how to make sure I'm using cryptostorm DNS servers?

Thanks

User avatar

parityboy
Site Admin
Posts: 1091
Joined: Wed Feb 05, 2014 3:47 am

Re: How to setup DNS on Ubuntu?

Postby parityboy » Mon Jun 19, 2017 2:28 pm

@OP

Can you post the content of /etc/resolv.conf? Thanks. ;)

EDIT
Copy this into a script file and then execute it - see if it fixes your issue. :)


Topic Author
Anon4d3

Re: How to setup DNS on Ubuntu?

Postby Anon4d3 » Mon Jun 19, 2017 10:16 pm

parityboy wrote:@OP

Can you post the content of /etc/resolv.conf? Thanks. ;)

EDIT
Copy this into a script file and then execute it - see if it fixes your issue. :)


Thanks for the reply, I've ran that script but sadly I'm still experiencing the same issue.

the content of my resolv.conf is: nameserver 127.0.0.53

just that

Thanks

User avatar

parityboy
Site Admin
Posts: 1091
Joined: Wed Feb 05, 2014 3:47 am

Re: How to setup DNS on Ubuntu?

Postby parityboy » Wed Jun 21, 2017 1:37 am

@OP

OK, so that's wrong. It should read 127.0.0.1. :) OK so do the following:

Code: Select all

cd /etc/resolvconf/resolv.conf.d
cat head


The result should be (based on what you've told me)

Code: Select all

# Dynamic resolv.conf(5) file for glibc resolver(3) generated by resolvconf(8)
#     DO NOT EDIT THIS FILE BY HAND -- YOUR CHANGES WILL BE OVERWRITTEN
nameserver 127.0.0.53


Edit it so that the address is 127.0.0.1, then run sudo resolvconf -u. Now do

Code: Select all

cd /etc/NetworkManager/dnsmasq.d
cat dnsmasq.conf


The output should be

Code: Select all

listen-address=127.0.0.1

If it isn't, edit it. Then reboot, and see if you get the same problem. :)


Topic Author
Anon4d3

Re: How to setup DNS on Ubuntu?

Postby Anon4d3 » Wed Jun 21, 2017 6:31 pm

parityboy wrote:@OP

OK, so that's wrong. It should read 127.0.0.1. :) OK so do the following:
~
If it isn't, edit it. Then reboot, and see if you get the same problem. :)


Sadly I'm still seeing Google DNS servers instead of CS DNS after following your instructions :/

User avatar

parityboy
Site Admin
Posts: 1091
Joined: Wed Feb 05, 2014 3:47 am

Re: How to setup DNS on Ubuntu?

Postby parityboy » Thu Jun 22, 2017 2:51 am

@OP

When I connect, I get this in /var/log/syslog

Code: Select all

Jun 21 22:35:53 defiant nm-openvpn[11445]: [server] Peer Connection Initiated with [AF_INET]5.101.137.252:443
Jun 21 22:35:56 defiant nm-openvpn[11445]: TUN/TAP device tun0 opened
Jun 21 22:35:56 defiant nm-openvpn[11445]: /usr/lib/NetworkManager/nm-openvpn-service-openvpn-helper tun0 1500 1602 10.33.196.122 255.255.0.0 init
Jun 21 22:35:56 defiant NetworkManager[1148]:    SCPlugin-Ifupdown: devices added (path: /sys/devices/virtual/net/tun0, iface: tun0)
Jun 21 22:35:56 defiant NetworkManager[1148]:    SCPlugin-Ifupdown: device added (path: /sys/devices/virtual/net/tun0, iface: tun0): no ifupdown configuration found.
Jun 21 22:35:56 defiant NetworkManager[1148]: <warn> /sys/devices/virtual/net/tun0: couldn't determine device driver; ignoring...
Jun 21 22:35:56 defiant NetworkManager[1148]: <info> VPN connection 'CS ENG' (IP Config Get) reply received.
Jun 21 22:35:56 defiant NetworkManager[1148]: <info> VPN connection 'CS ENG' (IP4 Config Get) reply received.
Jun 21 22:35:56 defiant NetworkManager[1148]: <info> VPN Gateway: 5.101.137.252
Jun 21 22:35:56 defiant NetworkManager[1148]: <info> Tunnel Device: tun0
Jun 21 22:35:56 defiant NetworkManager[1148]: <info> IPv4 configuration:
Jun 21 22:35:56 defiant NetworkManager[1148]: <info>   Internal Gateway: 10.33.0.1
Jun 21 22:35:56 defiant NetworkManager[1148]: <info>   Internal Address: 10.33.196.122
Jun 21 22:35:56 defiant NetworkManager[1148]: <info>   Internal Prefix: 16
Jun 21 22:35:56 defiant NetworkManager[1148]: <info>   Internal Point-to-Point Address: 0.0.0.0
Jun 21 22:35:56 defiant NetworkManager[1148]: <info>   Maximum Segment Size (MSS): 0
Jun 21 22:35:56 defiant NetworkManager[1148]: <info>   Forbid Default Route: no
Jun 21 22:35:56 defiant NetworkManager[1148]: <info>   Internal DNS: 5.101.137.251
Jun 21 22:35:56 defiant nm-openvpn[11445]: Initialization Sequence Completed
Jun 21 22:35:56 defiant NetworkManager[1148]: <info>   DNS Domain: '(none)'
Jun 21 22:35:56 defiant NetworkManager[1148]: <info> No IPv6 configuration
Jun 21 22:35:57 defiant NetworkManager[1148]: <info> VPN connection 'CS ENG' (IP Config Get) complete.
Jun 21 22:35:57 defiant NetworkManager[1148]: <info> Policy set 'CS ENG' (tun0) as default for IPv4 routing and DNS.
Jun 21 22:35:57 defiant NetworkManager[1148]: <info> Writing DNS information to /sbin/resolvconf
Jun 21 22:35:57 defiant dnsmasq[2922]: setting upstream servers from DBus
Jun 21 22:35:57 defiant dnsmasq[2922]: using nameserver 5.101.137.251#53


Can you do sudo tail -f /var/log/syslog, connect and then post the log entries here so that we can see what's going on? Thanks.


Return to “DeepDNS.net - cryptostorm's no-compromise DNS resolver framework”

Who is online

Users browsing this forum: No registered users and 6 guests

Login