[deesam]

 Hi all,

new to vpns so this is all new to me.
i am using nordvpn and every check i have done, except one, show the VPN ip rather than mine.
but this site;

http://myip.ms/

knows my real IP

I checked using a VPN book vpn, and it showed the vpns ip, as well as it being blacklisted.

How can this website see through my VPN?

I am running openvpn on linux

I think i caused nords live chat to meltdown

[GopherVPN]

Hi deesam!

Though I'm not an official representative for NordVPN, it sounds like your problem might have something to do with your configuration. I tested myip.ms through one of our VPNs and it showed the VPN IP, so I can confirm that website isn't using any sketchy techniques to ascertain your IP address.

I know that on some OSX clients, it is required that you check a "Send all traffic through VPN" button. There might be an option like that for your Linux OpenVPN client. Here is a OpenVPN client tutorial for Linux: http://www.techrepublic.com/blog/linux-and-open-source/how-to-set-up-a-linux-openvpn-client/.

I hope you get your issue resolved, but please remember I am not a NordVPN support technician. Best of luck.

[deesam]

thanks for the reply and for checking out the site. i also tried a vpnme server had the same issue.

following your advice i checked out the man page for openvp and the closest i could find to send all traffic to vpn was

--redirect-gateway [flags]: Automatically execute routing
                  commands to redirect all outgoing IP traffic through the
                  VPN.  Add 'local' flag if both OpenVPN servers are directly
                  connected via a common subnet, such as with WiFi.
                  Add 'def1' flag to set default route using using 0.0.0.0/1
                  and 128.0.0.0/1 rather than 0.0.0.0/0.  Add 'bypass-dhcp'
                  flag to add a direct route to DHCP server, bypassing tunnel.
                  Add 'bypass-dns' flag to similarly bypass tunnel for DNS.

Checking the config files the vpnbook config had this command but the other two did not.

Still the same problem. comparing the config file i found this

route-delay 2

also unique to the vpnbook file.

by adding this option as well, problem solved

from man

--route-delay n [w] : Delay n seconds after connection initiation before
                  adding routes (may be 0).  If not specified, routes will
                  be added immediately after tun/tap open.  On Windows, wait
                  up to w seconds for TUN/TAP adapter to come up.

so how that helps, i have no idea, but it does.

It would be interesting to know what this site does different to the others though,They seem to specilise in detecting proxies etc and it seems they have found a vulnerability in openvpn , but one that can be easily overcome. how many people are there using openvpn that would be unaware of this ( i only discovered by accident) and surfing thinking they are anonymous while they actually are not?

cheers

[deesam]

out of curiosity i ran openvpn without the --redirect-gateway option and the website still showd my vpn ip, so it seems it is the delay option that is important, although i may keep using both.

[GopherVPN]

Glad to hear you got your issue resolved. However, I have to severely doubt that they found a vulnerability in OpenVPN; I'd say its still relatively safe against hackers at least.