How To Protect Yourself From IPV6 and DNS leaks

How To Protect Yourself From IPV6 and DNS leaks

Its not unheard of to receive a letter from your ISP for downloading torrents even when using a VPN.

While it sounds like this shouldn’t happen, it is possible to be caused by a IPv6 or DNS leaks.

What is IPv6?

Internet Protocol version 6 (IPv6) is the latest version of the Internet Protocol (IP), the communications protocol that provides an identification and location system for computers on networks and routes traffic across the Internet.

What is an IPv6 Leak?

It may be possible for a third party or malicious attacker to trace user’s requests even when connected to an IPv4 VPN. This can happen to you while surfing a website by downloading an advertisement, image, or css file from an IPv6 URL, and it can even occur over Bit Torrent. This makes it possible to spy on the your website browsing history or online activity simply from leaked IPv6 requests.

What is DNS?

The domain name system (DNS) is a system for linking URLs and IP addresses. When you use your browser to go to a website, it sends a request to a DNS server with the URL that you typed in, which is then pointed to the correct IP address.

What is DNS Leak?

Sometimes your browser will ignore that you have a VPN set up and send the DNS request straight to your ISP. That’s called a DNS leak. This can mean you think that you are anonymous and safe from online surveillance, but you won’t actually be protected.

As you can see from the above, there are two different leaks that could compromise your online security, IPV6 and DNS Leaks. Here is what it looks like

DNS and IP

Source

How do I Protect Myself from IPv6 and DNS Leaks

First and foremost, a VPN is the most simple way to cover all the bases here

There are two ways

1) Use a VPN that protects IPv6 and DNS leak like PureVPN protects from IPv6 and DNS leak protections.

2) Most official VPN Provider software have built-in measures to help prevent such things from happening, using IPVanish as an example, their software assigns 198.18.0.1 and 198.18.0.2 as the primary and secondary DNS IPs.

However, if you are not using the official software, for example you are using DD-wrt, Open WRT, Tomato or maybe the OpenVPN app available on Android then  follow these suggestions:

1) Disable IPv6. IPVanish, for example operates using IPv4, but when you don’t use their software, if you submit a request for a website that has an IPv6 address, it will resolve using an IPv6 DNS server and transfer the information outside of their VPN network.

2) Manually set your own DNS servers to be something other than those provided by your ISP. Search the Internet for Public DNS servers and you may come across results like the OpenDNS project or Google’s DNS servers. Please note that some of these may prevent access to some services, and trial-and-error testing may be required in some cases.

Just a Note Though: your VPN providers DNS IP addresses will almost certainly only function while connected to their VPN service. You will need to revert to your ISP’s IP addresses or another publicly available DNS address after you disconnect or you will not be able to load webpages.

3) After connecting, try to run a DNS leak test. There are several sites that can help, including www.dnsleaktest.com, which also has information and instructions on other methods that may prevent a DNS leak.

Get more cool stuff like this
in your inbox

Subscribe to our mailing list and get more stuff and updates to your inbox.

Leave a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Get more cool stuff like this
in your inbox

Subscribe to our mailing list and get more stuff and updates to your inbox.