Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Unable to bypass Mullvad DNS via DNS override option in Passepartout #1

Closed
seanob86 opened this issue Jul 1, 2019 · 7 comments

Comments

@seanob86
Copy link

commented Jul 1, 2019

I just signed up with Mullvad as my current NordVPN subscription is coming to an end.
By using the NordVPN provider based option in app I can successfully connect and override/bypass Nord's DNS by providing my own preferred DNS server.

However with Mullvad I am unable to bypass their DNS servers as per the above method within the passepartout app. I can verify by dnsleaktest.com

I am trying to override the DNS to my AdGuard Home server (which works with Nord), but you can test with google 8.8.8.8 and Mullvad and verifying on dnsleaktest.com

If I unmask the network data and view the debug log I can see a dozen lines below 'starting tunnel' the following 'DNS: ["8.8.8.8"].

Debug log attached
debug-20190701-120206.txt

@seanob86

This comment has been minimized.

Copy link
Author

commented Jul 1, 2019

I have managed to find a workaround (confirmed) however it involves downloading the openVPN config from the Mullvad webpage and manually modifying the UDP port to allow overriding the DNS in the passepartout app. Mullvad support advised the following

You would need to connect to port 1400 UDP or 1401 TCP as well, since on
the default ports we hijack the DNS requests.

I am aware that in the passepartout app I can select a number of pre-defined ports for UDP and TCP (however the above ports are not an option for Mullvad). But as a means to simplify this going forward is it possible that the app could provide an option for the above ports? Or alternatively, if a user using Mullvad via the providers section of the app decides to override the DNS, then passepartout app will automatially modify the UDP or TCP port to allow third party DNS servers?

It would be convenient going forward and much more simpler than manually modifying the config file once downloaded from Mullvad.

@keeshux keeshux self-assigned this Jul 1, 2019

@keeshux keeshux transferred this issue from passepartoutvpn/passepartout-ios Jul 1, 2019

@keeshux keeshux closed this in 2d6b71b Jul 1, 2019

@keeshux keeshux added the bug label Jul 1, 2019

@keeshux

This comment has been minimized.

Copy link
Member

commented Jul 1, 2019

Thanks for the report. I've just added a new preset for those endpoints.

Do this in Passepartout from the Mullvad profile:

  • "Refresh infrastructure"
  • Preset > "Custom DNS"
  • Endpoint > Pick any of the two, "Automatic" defaults to UDP first

Let me know if DNS works this way.

@seanob86

This comment has been minimized.

Copy link
Author

commented Jul 1, 2019

Thank you for the quick fix 👍
I confirmed that custom DNS works as per your instructions after refreshing infrastructure for both UDP and TCP

Awesome that the app doesn’t require an update to make this work 😄

@keeshux

This comment has been minimized.

Copy link
Member

commented Jul 1, 2019

Nice! To be honest, I would have never realized the underlying issue without your insight. :)

@keeshux

This comment has been minimized.

Copy link
Member

commented Jul 1, 2019

@seanob86

This comment has been minimized.

Copy link
Author

commented Jul 3, 2019

Hi @keeshux! Wasn't sure if I should open a new issue but for context I will raise it here for now.

The custom DNS works great after applying it after updating the infrastructure. But after reboot of my iPhone the custom DNS preset no longer appears as an option. It basically reverts to how it was previously prior to when you asked me to do the infrastructure update.

To workaround I just need to update the infrastructure again - but I need to remember this after reboot.

@keeshux

This comment has been minimized.

Copy link
Member

commented Jul 3, 2019

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
2 participants
You can’t perform that action at this time.