ProtonVPN OpenBSD and DNS leaks

[stanl]

I am running OpenBSD -current and last night I managed to install ProtonVPN.
I went into my router configuration (I use Verizon FiOS) and changed the setting to obtain IPv4 DNS addresses automatically.
Went to dnsleaktest.com to check for DNS leaks and everything looked OK - the only server shown was one provided by the VPN.

This morning I booted up and again checked dnsleaktest.com and all I see is line after line of Verizon servers.

I am at a loss to explain everything looked good last night but not today.
If anyone has any ideas of where I should be looking I would be grateful.

Thank you

[jggimi]

Quote:

Originally Posted by stanl

...I managed to install ProtonVPN....

What software did you install, and how did you provision it?

[stanl]

I simply followed the instructions in:
https://irondesign.dev/protonvpnopen...vpn-on-openbsd

This morning I wiped out all of it and started again step by step. So far thru several shutdown/startup sequences it now seems to be working. I am keeping my fingers crossed.

I see errors in /var/log/messages:
Dec 28 08:39:35 eddie openvpn[34521]: ERROR: OpenBSD/NetBSD route add command failed: external program exited with error status: 1
Dec 28 08:39:35 eddie openvpn[34521]: /sbin/route add -net 0.0.0.0 -netmask 128.0.0.0 10.18.0.1
Dec 28 08:39:35 eddie openvpn[34521]: ERROR: OpenBSD/NetBSD route add command failed: external program exited with error status: 1
Dec 28 08:39:35 eddie openvpn[34521]: /sbin/route add -net 128.0.0.0 -netmask 128.0.0.0 10.18.0.1
Dec 28 08:39:35 eddie openvpn[34521]: ERROR: OpenBSD/NetBSD route add command failed: external program exited with error status: 1
Dec 28 08:39:35 eddie openvpn[34521]: Initialization Sequence Completed

And ifconfig shows me both a tun0 and a tun1.

i have no idea what any of it means but since things seem to be working I am not going to worry abut. it.

Thank you as always for your concern.

[jggimi]

When following any sort of third-party "how to" document, it's best to ask the author for assistance directly when you run into any procedural confusion or operational concern. In this case, only another user of your service -- or someone with significant OpenVPN client experience -- might be able to answer provisioning and operational questions. There don't seem to be any knowledgeable OpenVPN users active on this forum (ref: https://daemonforums.org/showthread.php?t=12291).

[stanl]

Thanks, jggimi. I will keep that in mind in the future.