-
Notifications
You must be signed in to change notification settings - Fork 446
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
VPN control not working - AFWall+ doesn't block / blocks when it shouldn't #828
Comments
There's indeed connectivity issues when the VPN service is used. Example with UID 1000: |
Also affected when using ovpn client. |
For me basically the VPN toggle has no effect whatsoever. I stripped down the rules to a minimum:
Mobile data and VPN are active, I would expect "imdb" not to have access but "wrd" to have access. AFWall+ v3.1.0 installed via PlayStore. |
I have this problem, too. Naively, I expected apps to use whichever type of internet is enabled in AFWall+, i.e. I can decide some apps go through the VPN-firewall, and others connect directly. AFWall paid v3.1.0 from Fdroid, VPN via Blokada 3.7.022000 FDroid. |
I am having the same issue. LineageOS 16. If the VPN isn't connected, all apps are still able to access the net. I am using the ovpn client. Have there been any updates for this? |
What I want to achieve:
no Internet connection for any app when VPN is not connected
My setup:
Lineage OS 14.1, with integrated VPN client via Settings -> More -> VPN
AFWall+ in whitelist mode and enabled "VPN control"
grant mobile access to "(root) - Apps running as root" and "(vpn) - VPN networking", with this I can connect to my VPN Server over mobile data
Test 1: grant vpn access to browser, connect to VPN
Expected behavior: browser has internet access over the VPN
Actual behavior: browser doesn't have internet access
Test 2: disable vpn access to browser, grant mobile access to browser, connect to VPN
Expected behavior: browser doesn't have internet access (because VPN is connected, and browser doesn't have vpn access, only mobile access)
Actual behavior: browser has internet acces over the VPN (verified by checking the IP adress - the browser uses the IP of the VPN Server, not the IP of the phone via mobile data).
Summary
AFWall+ blocks when it shouldn't (VPN access granted) and doesn't block when it should (mobile access granted but no vpn access granted) when VPN is connected.
Without VPN, AFWall+ works fine (blocks internet access when wlan/mobile access is not granted)
Maybe this is related to #782 ?
My setup is more or less the same as in the screenshots from @Primokorn in #782 (comment), except that I don't use OpenVPN, but the integrated VPN client of Android/LineageOS.
Any ideas, or is this a bug and AFWall+ doesn't work with the integrated VPN client?
The text was updated successfully, but these errors were encountered: