Vadim Smirnov

Forum Replies Created

Viewing 15 posts - 16 through 30 (of 1,190 total)
  • Author
    Posts
  • in reply to: Exit on bad config flag #12727
    Vadim Smirnov
    Keymaster

      Works perfectly!

      Thanks for checking!

      Unrelated suggestion: display version info in the initial notice message

      As you wish, v1.2.15!

      in reply to: Exit on bad config flag #12725
      Vadim Smirnov
      Keymaster

        Yes, sorry, my fault. Fixed in v1.2.14. Please try.

        in reply to: Exit on bad config flag #12719
        Vadim Smirnov
        Keymaster

          The proposed changes were implemented in v1.2.13. Please give it a try.

          in reply to: AllowedApps не работает #12718
          Vadim Smirnov
          Keymaster

            Так как DNS указан в config, то весь DNS трафик (через dnscache) идет через тоннель на 1.1.1.1. И DNS трафик браузеров не включенных в AllowedApps тоже (исключение, случаи использования DNS over HTTPS в том же Firefox).

            На всякий случай я попробовал такую же конфигурацию с 1.1.1.1 у себя и она работает как ожидалось. Так что описанное поведение для меня выглядит странно, надо бы записать логи и PCAP файлы, посмотреть, что там на уровне сети происходит. Не исключено, что установлен какой-то антивирусный пакет, который встраивается в браузер, и за DNS происходит некий конфликт. Если что-то такое установлено, попробуйте удалить/выключить. Еще попробуйте поменять адрес DNS, на что-то альтернативное (8.8.8.8), посмотреть будет ли разница.

            in reply to: Use VirtNet to connect to Internet #12714
            Vadim Smirnov
            Keymaster

              I have not tried to test compatibility with VirtualBox, in general, Ethernet Bridge is just a sample to demonstrate the capabilities of Windows Packet Filter. But it’s quite possible that VirtualBox is using a similar approach to connect to the host network and there is some conflict. This requires more in-depth research.

              in reply to: Use VirtNet to connect to Internet #12712
              Vadim Smirnov
              Keymaster

                Good! However, in my previous post, I indicated where you can download the pre-build binaries. This archive contains all what you needed.

                in reply to: how to use wiresock? #12708
                Vadim Smirnov
                Keymaster

                  Путь к файлу конфигурации не нужно ставить в квадратные скобки. Скорее всего из-за этого клиент не может его найти.

                  in reply to: Use VirtNet to connect to Internet #12705
                  Vadim Smirnov
                  Keymaster

                    I think you have downloaded binaries for legacy Windows systems. Instead, you should try this more modern Windows Packet Filter example. Compiled binaries are available here. Note to install Windows Packet Filter drivers to be able to use sample binaries.

                    in reply to: Use VirtNet to connect to Internet #12703
                    Vadim Smirnov
                    Keymaster

                      Yes, but you will need to relay packets from the virtual NIC to the real one. For example, you can use the Windows Packet Filter for this purpose.

                      in reply to: Exit on bad config flag #12700
                      Vadim Smirnov
                      Keymaster

                        You may be right, at least for the case where wiresock-client is running as an application and neither the primary nor secondary configurations are good/available, it makes sense to exit. As for the service, it may constantly try to restart.

                        in reply to: Wiresock exiting unexpectedly #12697
                        Vadim Smirnov
                        Keymaster

                          For those facing a similar issue, check the MTU configuration setting. As a rule, it should not exceed 1420 bytes (1440 bytes for IPv4 only tunnels), specifying a larger value, such as 1500, results in the behavior described above.

                          in reply to: Exit on bad config flag #12696
                          Vadim Smirnov
                          Keymaster

                            Thing is: I assume that if wireguard is running, it is connected (as it’s not really possible to query the actual connection state to my knowledge).

                            Desired behaviour: wiresock process exits if config file is bad/does not exist.

                            Even so, running service != active tunnel. For example, the configuration file may be present and correct, but Wireguard server may be down or unreachable.

                            I already have several requests to add a simple application with a tray icon to indicate the status of a WireSock tunnel. So, I need to add some IPC for communication between service and tray app. Probably the simplest would be to create a shared memory section to represent the current state of the service/tunnel, or a simple named pipe request-response mechanism.

                            More complex, but at the same time more modern and flexible, would be to add a simple web socket server using a third-party library such as websocketpp.

                            I will give it a think until the next weekend. Any suggestions are appreciated.

                            Vadim Smirnov
                            Keymaster

                              Hi,

                              Looks very similar to this discussion. At that time, the problem was solved by adding SOCKS5 for WireGuard handshake. You can check if it still works.

                              in reply to: AllowedApps не работает #12693
                              Vadim Smirnov
                              Keymaster
                                1. %APPDATA% в пути использовать нет смысла, там идет поиск подстроки.
                                2. Видимо имеется ввиду,  не то что Хром ходит через VPN туннель, а DNS от Хрома. Дело в том, что DNS  резолвинг идет от процесса dnscache, а не от самого Хрома и если в конфиге прописаны DNS, то весь DNS идет в тоннель. Есть мысль перенаправлять не весь DNS, а конкретно dnscache и только если не указан в DisallowedApps. Наверное так и сделаю.
                                in reply to: Tray Icon for WireSock #12692
                                Vadim Smirnov
                                Keymaster

                                  Понимаю… Постараюсь найти время…

                                Viewing 15 posts - 16 through 30 (of 1,190 total)