Jump to content

VPN and Firefox ip leak potential

Sicko65
By Sicko65
in Networking
 Share
Posted

So I recently discovered the hard way that Firefox enabled DNS over https which caused ip leaks. Not sure if this is a common issue or if it's been posted before but the fix is to go to preferences >network settings>DNS over https and disable it. Hope this helps someone avoid frustration because I thought I messed up in the order I turn my VPN to play games. 

Link to comment
Share on other sites
Link to post
Share on other sites
Posted
  • Author

What is a "WebRTC leaks"?

WebRTC implement STUN (Session Traversal Utilities for Nat), a protocol that allows to discover the public IP address. To disable it:

  • Mozilla Firefox: Type "about:config” in the address bar. Scroll down to “media.peerconnection.enabled”, double click to set it to false.
  • Google Chrome: Install Google official extension WebRTC Network Limiter.
  • Opera: Type "about:config" in the address bar or go to "Settings". Select "Show advanced settings" and click on "Privacy & security". At "WebRTC" mark select "Disable non-proxied UDP".

 

What is a "DNS leaks"?

In this context, with "DNS leak" we mean an unencrypted DNS query sent by your system OUTSIDE the established VPN tunnel.

Why my system suffers DNS leaks?

In brief: Windows lacks the concept of global DNS. Each network interface can have its own DNS. Under various circumstances, the system process svchost.exe will send out DNS queries without respecting the routing table and the default gateway of the VPN tunnel, causing the leak.

Should I be worried for a DNS leak?

If you don't want that your ISP, and anybody with the ability to monitor your line, knows the names your system tries to resolve (so the web sites you visit etc.) you must prevent your system to leak DNS. If you feel that you're living in a human rights hostile country, or in any way the above mentioned knowledge may harm you, you should act immediately to stop DNS leaks.

Link to comment
Share on other sites
Link to post
Share on other sites
Posted
10 minutes ago, Sicko65 said:

What is a "WebRTC leaks"?

WebRTC has nothing to do with DNS.

10 minutes ago, Sicko65 said:

What is a "DNS leaks"?

In this context, with "DNS leak" we mean an unencrypted DNS query sent by your system OUTSIDE the established VPN tunnel

DNS-over-HTTPS isn't unencrypted and it isn't being sent outside of the VPN-tunnel, unless your tunnel itself is misconfigured.

Hand, n. A singular instrument worn at the end of the human arm and commonly thrust into somebody’s pocket.

Link to comment
Share on other sites
Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing Networking

×