Originally Posted by
co_co
Right now she's running a VPN service on OpenVPN with BTGuard still enabled (but with its settings relaxed).
That's overkill But hey, safety first.
As to removing the default gateway and DNS servers, I'm a little lost there. Any links with an explanation, perhaps? It sounds like you've written about this before.
Assuming she's on Windows, the procedure is: open the connection's properties, then go to the TCP/IPv4 settings and wipe the content of the "Default gateway", "Preferred DNS server" and "Alternate DNS server" fields.
Now you have to manually add the route as we spoke before. Open a command prompt as administrator and run NSLOOKUP to find out the server's IP(s):
Code:
C:\Users\Username>nslookup vpn.example.com
Server: localhost
Address: 127.0.0.1
Non-authoritative answer:
Name: vpn.example.com
Addresses: 234.55.66.77
Then run ROUTE PRINT and you may see something like this (followed by a long route table, scroll up if necessary):
Code:
C:\Users\Username>route print
===========================================================================
Interface List
10...00 17 63 ed b2 e9 ......Brand Name Ethernet Adapter
1...........................Software Loopback Interface 1
===========================================================================
Note the number immediately at the beginning of the last two lines. That's the interface ID.
Now you can finally add the route. This example assumes there's only one VPN server whose address is 234.55.66.77, while the LAN gateway of her router is 192.168.1.1 and the interface ID is 10 - change accordingly, add lines if there's more than one server.
Code:
C:\Users\Username>route add 234.55.66.77 MASK 255.255.255.255 192.168.1.1 IF 10
OK!
Then connect to the VPN as usual. (If it doesn't work, you may have to rewrite the .ovpn file to use the server's IP instead of its hostname, since local DNS can no longer be used to resolve the name.)
Anyway, to use BTGuard through a VPN as you tell me she is doing, you'd have to do this twice - first to create a route from the "real" connection to the VPN, then from the there to BTGuard. The first step we've already discussed; the second is slightly more difficult since you probably can't set a fixed IP in the virtual adapter. Assuming its interface ID is 11 and its name on Network Connections is VPN Service, she'll have to run the following commands as administrator once everything is online:
Code:
route delete 0.0.0.0 if 11
netsh interface ip set dnsservers name="VPN Service" static 0.0.0.0 primary
All of this may be a little mind-boggling at first, but once you've got all the server IPs and interface IDs, you can just write a script that does all the work automatically. NetRouteView provides a friendlier way of seeing and controlling routing tables, too.
Bookmarks