November 18, 201411 yr Has anyone experienced their OpenVPN being hacked from the provider you are connected to? I use giganews as my usenet provider. My account comes with a free VPN to their severs. So I have been using the OpenVPN plugin to better secure my traffic from prying eyes. http://lime-technology.com/forum/index.php?topic=36325.0 I thought there might be an issue with my AT&T uVerse router, so I reset the firewall effectively closing all pinholes to anything inside my network. I have no port forwarding turned on at this time. My unRaid box was still being hit as if I'm in the dmz, which I am not. See unRaid log attached. (the uVerse log is pretty useless) I have been banging my head against the wall trying to figure out how someone was getting past my firewall and directly to my unRaid box. Then it dawned on me that the unRaid box has a direct VPN path to Giganews. I decided to turn off the OpenVPN connection and now the log is showing 0 outside activity. (maybe the hackers are eating dinner ) From my research on the web I have found that OpenVPN is venerable to being hacked at the location it is hosted to. Giganews seems to be a pretty big usenet provider, so I am assuming they "should" be secure. They also have multiple VPN locations to connect to. My situation might be unique, but I am reaching the end of my googling skills. I have limited knowledge to internal things a VPN connection is doing. I'm not a newbie to unRaid, but nowhere near as technical as many people on this board. I could really use some external input about this problem, which ultimately appears to be causing my unRaid web server to crash. btw, GRC ShieldsUp! did not get any response when it queried my static IP. syslog.zip
November 19, 201411 yr See here, specifically #7. http://www.giganews.com/support/vyprvpn/faq/general.html Unless you configured the NAT option, you are connected directly to the internet with no firewall at all on the VPN address. It's not just connecting to giganews, it's a regular internet IP.
November 19, 201411 yr Author Ok. That makes sense. Now my question is regarding the OpenVPN plugin. So would extending the router to only route specific ip addresses prevent this from happening.
Archived
This topic is now archived and is closed to further replies.