Web lists-archives.com

Re: VPN kill switch




On Sonntag, 6. Mai 2018 20:00:01 CEST Alejandro Andreu wrote:
> Hi all,
> 
> So within "Connections" in the system settings I've enabled an OpenVPN
> connection when my wired interface goes online, as well as with my home
> Wi-Fi SSID and so on. Is it possible to do the following?
> 
> 1 - Enable VPN with all connections, no matter what. I connect to a new SSID
> in a cafe and the VPN link should go up. 2 - If, for any reason, the VPN
> goes down all outgoing connections are automatically
> dropped/rejected/whatever. That is, I would like to connect to the Internet
> only if connected to the VPN (only OpenVPN packets should go out if still
> not connected to the VPN).


The best option for ensuring traffic is always routed through your VPN is to 
have respective firewall rules.

Essentially block all traffic on all external interfaces unless it is from/to 
your VPN end point.

Cheers,
Kevin

-- 
Kevin Krammer, KDE developer, xdg-utils developer
KDE user support, developer mentoring

Attachment: signature.asc
Description: This is a digitally signed message part.