Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
V
V
vkpavel2015-04-01 00:12:35
VPN
vkpavel, 2015-04-01 00:12:35

How to block internet without VPN?

There is Windows 7 with VPN.
It is required to make the Internet on the machine not work without VPN

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

3 answer(s)
Report
V
Valentin, 2015-04-01
@vvpoloskin

You are asking for the impossible. Part of this Internet will definitely work. At least for access to the VPN server.
And so there are two options:
1) remove the default route, leave only the route to the VPN server. As I understand it, when you connect to a VPN, you are given a default route.
2) In the firewall, prohibit all outgoing packets (and incoming ones) with the participation of the main connection, except for packets to the VPN server

Report
S
Sergey, 2015-04-01
@edinorog

pppoe and lack of dhcp on the network. and you will be happy

Report
R
Roman Lankin, 2016-06-06
@LanKing

The issue is solvable, for myself I solved it using Windows 7, namely, by dividing it into public networks and work / home. I myself blew myself with this question, so I understand you :-) I hope the solution will be useful to someone other than me.
We do all actions through the firewall (Start->Administration->Firewall)
1. Defaults for profiles:
We need to make the Internet accessible only from a private profile (private profiles are "Home" and "Work"), and from public we need only the ability to connect to VPN + the basics of local networks.
So, settings (Action->Properties)
2. Set up rules for outgoing connections , all for a general profile :

  • Allow connection
  • Realm > Remote IP address > your_VPN_IP + 8.8.8.8 + your_provider_main_page_ip
(allows using the ping command to check for access to your provider, access to the 8.8.8.8 Google server (in fact, Internet access) and the presence of a VPN server on the network, which happens, drops)
Protocols and ports > Protocol type: IGMPv4
3. You need to review the rules for the general profile in inbound and outbound. Sort by the "Profile" column and see that there is no access for programs through a common profile, if there is, disable the rules.
4. What to do if, after connecting to the VPN, it is impossible to select a profile as private, and the network is defined as an unknown network: The reason is that vpn does not give you the default gateway, which is necessary for windows to be able to select the type of profile. Solved by adding lines to the VPN server config. Read more here .
Good luck!
- LanKing

Similar questions
N
norlin2014-03-14 08:17:23
Does anyone have any information about VPNplugin (iOS VPN API)? 4Reply
N
NzXr2016-05-15 23:44:58
VPN-Tor_VPN Is it correct? 1Reply
D
Dmitry Ivanov2018-10-14 19:39:30
How does traffic go in voip applications? 3Reply
A
alovanton2016-05-18 11:40:30
How to configure access to documents? 1Reply
S
Skywalker732018-10-16 19:15:16
How to make 2 isolated networks on one mikrotik? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question