Prolem with DNS resolving on Windows
36 views
Skip to first unread message
morteza narouie
Jan 1, 2023, 1:57:52 AM1/1/23
to tunnelblick-discuss
I did follow this guid to install Openvpn and Tunnelblick XOR Patch.
After installation i can't access to any site with domain like google.com but i can ping the ip's like x.x.x.x!
After installation i can't access to any site with domain like google.com but i can ping the ip's like x.x.x.x!
How can i fix this?
BTW i have a log from server with tcpdump for dns check with ping google.com
07:54:27.942797 IP 10.8.0.6.52044 > 8.8.8.8.53: 15620+ A? google.com. (28)
07:54:28.936389 IP 10.8.0.6.52044 > 8.8.4.4.53: 15620+ A? google.com. (28)
07:54:29.962716 IP 10.8.0.6.52044 > 8.8.4.4.53: 15620+ A? google.com. (28)
07:54:30.405710 IP 10.8.0.6.58213 > 8.8.8.8.53: 62968+ A? dns.msftncsi.com. (34)
07:54:31.431757 IP 10.8.0.6.58213 > 8.8.4.4.53: 62968+ A? dns.msftncsi.com. (34)
07:54:31.963331 IP 10.8.0.6.52044 > 8.8.8.8.53: 15620+ A? google.com. (28)
07:54:31.963508 IP 10.8.0.6.52044 > 8.8.4.4.53: 15620+ A? google.com. (28)
07:54:32.417971 IP 10.8.0.6.58213 > 8.8.4.4.53: 62968+ A? dns.msftncsi.com. (34)
07:54:34.433790 IP 10.8.0.6.58213 > 8.8.8.8.53: 62968+ A? dns.msftncsi.com. (34)
07:54:34.435814 IP 10.8.0.6.58213 > 8.8.4.4.53: 62968+ A? dns.msftncsi.com. (34)
07:54:35.992434 IP 10.8.0.6.52044 > 8.8.8.8.53: 15620+ A? google.com. (28)
07:54:35.992579 IP 10.8.0.6.52044 > 8.8.4.4.53: 15620+ A? google.com. (28)
07:54:28.936389 IP 10.8.0.6.52044 > 8.8.4.4.53: 15620+ A? google.com. (28)
07:54:29.962716 IP 10.8.0.6.52044 > 8.8.4.4.53: 15620+ A? google.com. (28)
07:54:30.405710 IP 10.8.0.6.58213 > 8.8.8.8.53: 62968+ A? dns.msftncsi.com. (34)
07:54:31.431757 IP 10.8.0.6.58213 > 8.8.4.4.53: 62968+ A? dns.msftncsi.com. (34)
07:54:31.963331 IP 10.8.0.6.52044 > 8.8.8.8.53: 15620+ A? google.com. (28)
07:54:31.963508 IP 10.8.0.6.52044 > 8.8.4.4.53: 15620+ A? google.com. (28)
07:54:32.417971 IP 10.8.0.6.58213 > 8.8.4.4.53: 62968+ A? dns.msftncsi.com. (34)
07:54:34.433790 IP 10.8.0.6.58213 > 8.8.8.8.53: 62968+ A? dns.msftncsi.com. (34)
07:54:34.435814 IP 10.8.0.6.58213 > 8.8.4.4.53: 62968+ A? dns.msftncsi.com. (34)
07:54:35.992434 IP 10.8.0.6.52044 > 8.8.8.8.53: 15620+ A? google.com. (28)
07:54:35.992579 IP 10.8.0.6.52044 > 8.8.4.4.53: 15620+ A? google.com. (28)
my server is Ubuntu 22 and server config is there:
port 19192
proto udp
dev tun
ca /etc/openvpn/ca.crt
cert /etc/openvpn/server/server.crt
key /etc/openvpn/server/server.key
dh /etc/openvpn/dh.pem
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist /etc/openvpn/ipp.txt
push "redirect-gateway def1 bypass-dhcp"
push "dhcp-option DNS 8.8.8.8"
push "dhcp-option DNS 8.8.4.4"
keepalive 10 120
cipher AES-128-GCM
tls-crypt /etc/openvpn/tls-crypt.key
persist-key
persist-tun
status openvpn-status.log
verb 3
scramble obfuscate *******************************
proto udp
dev tun
ca /etc/openvpn/ca.crt
cert /etc/openvpn/server/server.crt
key /etc/openvpn/server/server.key
dh /etc/openvpn/dh.pem
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist /etc/openvpn/ipp.txt
push "redirect-gateway def1 bypass-dhcp"
push "dhcp-option DNS 8.8.8.8"
push "dhcp-option DNS 8.8.4.4"
keepalive 10 120
cipher AES-128-GCM
tls-crypt /etc/openvpn/tls-crypt.key
persist-key
persist-tun
status openvpn-status.log
verb 3
scramble obfuscate *******************************
and my client is Windows with config:
client
dev tun
proto udp
remote xx.xx.xx.xx 19192
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert mori.crt
key mori.key
remote-cert-tls server
cipher AES-128-GCM
tls-crypt tls-crypt.key
verb 3
scramble obfuscate *********************************
dev tun
proto udp
remote xx.xx.xx.xx 19192
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert mori.crt
key mori.key
remote-cert-tls server
cipher AES-128-GCM
tls-crypt tls-crypt.key
verb 3
scramble obfuscate *********************************
Tunnelblick developer
Jan 1, 2023, 9:27:09 AM1/1/23
to tunnelblick-discuss
I think your first step should be to remove the "scramble obfuscate" lines from both server and client configurations. What happens then?
morteza narouie
Jan 1, 2023, 10:50:09 AM1/1/23
to tunnelblick-discuss
i did remove that line but problem still there and i have only access to my VPS server. btw that line i not for Obfuscate? my country does
censorship and blocking the connections !! it because i used that line.
Reply all
Reply to author
Forward
0 new messages