this post was submitted on 30 Oct 2023
3 points (55.2% liked)

Programming

17378 readers
344 users here now

Welcome to the main community in programming.dev! Feel free to post anything relating to programming here!

Cross posting is strongly encouraged in the instance. If you feel your post or another person's post makes sense in another community cross post into it.

Hope you enjoy the instance!

Rules

Rules

  • Follow the programming.dev instance rules
  • Keep content related to programming in some way
  • If you're posting long videos try to add in some form of tldr for those who don't want to watch videos

Wormhole

Follow the wormhole through a path of communities !webdev@programming.dev



founded 1 year ago
MODERATORS
 

I connect to a WireGuard installed on my VPS. Then I go to a random VPN service marketing page on which I'll discover that my DNS leaks. And which is correct because I've specified DNS = 1.1.1.1 in [Interface] for all the Peers.

In order to avoid DNS leakadge, do I have to a) run DNS server on the a VPS -- along with WireGuard, and b) use this one and only it, instead of 1.1.1.1?


But if so, how will this possibly work?

[Peer]
PublicKey = [....;....]
PresharedKey = [......]
Endpoint = wg.my_domain123.com:51820

In order to resolve Endpoint of my VPS to begin with, other DNS server will have to be used -- by IP. But there'll be none because I'll use a DNS on my VPS instead of 1.1.1.1. In other words, it'll be a circular dependency.

you are viewing a single comment's thread
view the rest of the comments
[–] salvador@lemmy.world -5 points 1 year ago* (last edited 1 year ago) (1 children)

You've assumed that my VPS has a DNS server installed on it. Why?

[–] towerful@programming.dev 2 points 1 year ago* (last edited 1 year ago) (1 children)

Use the IP address of your vps instead of a domain name for the wireguard config.

Edit:
Just to make this absolutely clear and remove all doubt.
If wireguard is trying to connect using a domain name, the domain name will need to be resolved, which will likely require initial DNS queries to establish the IP address behind the domain name.

If you configure wireguard to connect directly to the IP address of the VPS, there is no need for a DNS lookup.

So no, I'm not assuming your VPS is running a DNS.
Wind your neck in before you embarrass yourself.

[–] salvador@lemmy.world -1 points 1 year ago (1 children)

Even if I I used an IP of my VPS server to connect to it, how will a client be resolving websites afterwards? You idiot.

[–] towerful@programming.dev 2 points 1 year ago* (last edited 1 year ago) (1 children)

Using a DNS server, somewhere. Unless you manually gather the required IP addresses of whatever services you want and build up a hosts file, like how the original ARPANET worked.

The requests will come from somewhere and go somewhere. There is not magic "you don't see me" domain resolution system. Even DoH or DoT, you have to trust the resolving server isn't going to track you.
Whether that request is to a DNS server you run on an IP linked to you (which will recursively resolve any uncached domains), or from the gateway of your VPN to a DNS server you do not run... It's always going to come back to an IP address of a VPS that is linked to you.

I don't get what you are trying to do, you haven't explained it well, and your being hostile as fuck all over the thread.

If you really want anonymity, use TOR?
Other than whatever-the-CIA/NSA/MI5/MI6/5-eyes is doing with timing attacks and their own relay/exit nodes, that's about as anonymous as you can get

[–] salvador@lemmy.world -3 points 1 year ago (1 children)

You'll be learning soon what I'm up to, you stupid fuck. Soooooonnn. Ahhhaaahhhaaa

[–] TexMexBazooka@lemm.ee 2 points 11 months ago* (last edited 11 months ago) (1 children)

Bruh after scrolling through your comments for entertainment value, I had to stop by and personally talk shit-

You are by no means intelligent enough to be any kind of threatening. Stop making a fool of yourself.

Or continue. It’s honestly funny.

I will take no further questions.

[–] salvador@lemmy.world -2 points 11 months ago