Well, After hundreds of GB of torrents downloaded, I slipped up. I’ve been changing around linux distros recently and i believe i configured my VPN wrong or forgot to turn it back on after doing something. Well, I finally got hit with a copyright warning. Just your typical “we had to send this” type of warning but none-the-less, I slipped up.
Sharing this because the day before it happened, I read a post about not only having your killswitch on but also binding your client to you vpn interface for situations like this. Needless to say I didn’t take that precaution. For those who are on linux, I found a great post about how to set this up on reddit and wanted to remind people to “double wrap” because why not be safe lol.
The steps were more or less as follows (for QBitTorrent at least):
-
Tools -> Preferences -> Advanced Settings
-
Under “Network Interface”, select your vpn interface. To test, check what shows with your vpn on, and then turn it off and re-navigate to this part to see what dissapeared. Thats likely your vpn interface if the name wasn’t clear. (Do not be seeding/downloading torrents while doing this in case).
-
To test, download a non-copyright torrent like the Ubuntu ISO torrent. In the middle of download, disconnect or close your vpn connection. This should stop the download.
Not sure if reddit links are cool here but here is the guide source if anyones interested. Binding VPN to Torrent Client
Stay hidden!
ive not had any leaking since i setup my torrenting container(deluge is my fav) to use the openvpn container(gluetun) for its internet. theres zero chance it can leak, nothing to ‘forget to turn on’… kinda idiotproof, which i needed
gluetun is your friend
Gluetun can also be configured to write it’s forwarded port to a text file (if your VPN provider supports port forwarding), and then I have a custom script that runs when my qbittorrent container starts to read the port number and change the listening port in the config file. Works great!
Cool! I’ll definitely check that out. Thanks!
Why openvpn? Last I checked wireguard has significantly better performance (plus it’s built into the kernel already)
Be careful of dualstack and IPv4-only VPNs. The client can discover and advertise the real IPv6 address, even if adequately firewalled. I’m not sure if gluetun addresses this risk.
edit: this should be considered a risk even if you don’t have IPv6 support today, as this could be enabled by your ISP in the future, then automatically enabled on your network by your router.
Look at Mr fancypants here with an ISP that actually has some form of IPv6 support
struts in his fancy pants
gluetun is dope! i just setup a podman pod with gluetun and deluge.
How do you manage your podman pod? I just manually wrote it out into a script just this past week, but it seems inelegant to do all these commands so manually.
ive been using quadlets. i manually wrote out the container, pod, and network files, because I’m still learning about now everything works. now that I kinda get it, I’ll probably figure out how kube files work and just have a yaml file for a pod.