Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
J
J
jejoj2016-07-09 04:04:32
openvpn
jejoj, 2016-07-09 04:04:32

Block all non-VPN traffic with a firewall?

Hello.
I use OpenVPN and I want that even if the VPN drops, the Internet does not continue to work under the real IP. To solve this problem, almost all the options from Google were tried, but I stopped at creating special rules in the windows 7 firewall.
Here is the instruction itself (it is short https://zorrovpn.com/articles/windows-firewall-vpn-only ), but I will briefly describe it myself:
The point is to block all connections in general for private and domain profiles, but an exception is made for openvpn.exe. Then the Internet will only work through the VPN.
But there is a problem: The Internet does not work through OpenVPN if you block all incoming / outgoing connections for the public profile, and this is important, because. By default, the system assigns all new connections to this profile.
Those. in order for the rules described in the instructions to work correctly, all new connections must be changed to home or work. Why does the Internet not work (although openvpn connects to servers) if incoming / outgoing connections are blocked in the public profile with an exception for openvpn?
I’m even ready to thank bitcoins for the help, and I would also be glad to hear other options for solving my problem (the Internet is strictly only through OpenVPN). Thank you!

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

4 answer(s)
Report
L
ldv, 2016-07-09
@jejoj

Probably the OpenVPN adapter itself has a network type - public. Accordingly, if you prohibit outgoing connections for public, then nothing will work.
You can try to change the default zone for new connections
https://niallbest.com/unidentified-networks-in-win...
PS. Also in the properties of the firewall rules in the tab there is an additional section "Types of interfaces". If by new connections you mean wireless networks, then create a rule allowing access only on the VPN server port via WiFi.

Report
S
Sergey, 2016-07-09
@edinorog

and not fate to raise a virtual machine with a router ... let all the traffic go before it, and from it already raise vpn and forbid traffic from it to go somewhere other than vpn?)

Report
A
alegzz, 2016-07-09
@alegzz

in advanced settings, click "firewall properties", "secure network connections - configure", there uncheck the Openvpn connection

Report
V
Vlad Zhivotnev, 2016-07-09
@inkvizitor68sl

remove the default route in the system.

Similar questions
A
Andymion2018-03-04 11:00:01
OPENVPN: balancing + fixed client IPs = is it possible? 1Reply
F
firexonix2015-11-03 22:58:46
How to allow only certain sites through openvpn? 2Reply
V
vlarkanov2018-03-12 12:12:08
ChromeOS: How to connect to OpenVPN without username and password? 0Reply
M
maddog6702018-03-17 17:21:55
OpenVpn connects but can't access sites. Why? 1Reply
1
1Vasiliy2021-07-15 15:32:19
Where are OpenVPN connection logs stored in Android? 0Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question