There have been multiple accounts created with the sole purpose of posting advertisement posts or replies containing unsolicited advertising.

Accounts which solely post advertisements, or persistently post them may be terminated.

ELI5: Does a DNS provider or an adversary know my real IP address if I have a DNS leak?

I use a VPN service that is connected to a server in another country, however this VPN service does not offer control over my DNS requests to block some sites so I preferred to use another DNS resolver that has this function.

My question is: When I access my VPN’s website, it accuses that a “DNS leak” is occurring. Can the DNS provider know my real IP address, or does it only know my VPN’s IP?

lurch ,

the other DNS resolver can see your IP and the sites you look up if the route to it is not set to go through the VPN. you can maybe use something like traceroute to check that, but it should be possible to conclude it from the routing table.

MummifiedClient5000 ,

Traceroute won’t show if you leak DNS requests outside of your VPN. (Unless you coincidentally also leak traffic, but then you’re pretty much just not using your VPN).

To confirm you’ll need to analyze your traffic-flow using a tool like tcpdump or Wireshark and check the source and destination for DNS traffic. If you see incoming DNS responses on an interface that is not your VPN-adaptor or maybe a loopback interface then you’re probably not tunnelling DNS through the VPN.

To answer the question in the headline: Regular DNS is unencrypted and quite easy to snoop on, so any node on the route between you and the DNS server will be able to read it if not using a VPN (i.e. DNS leak). Not sure what you mean by adversary, but it’s not like anyone on the internet can see your traffic. The DNS server may log your request and if you’re not on VPN, your IP address may be logged too.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • [email protected]
  • lifeLocal
  • random
  • goranko
  • All magazines
    •