Hi, On Sun, Nov 29, 2015 at 5:10 PM, ValdikSS <i...@valdikss.org.ru> wrote:
> This option blocks all out-of-tunnel communication on TCP/UDP port 53 > (except > for OpenVPN itself), preventing DNS Leaks on Windows 8.1 and 10. v7 looks good and behaves as promised.. Tested v7-master and v7-2.3 (the latter built with and without wfp) on windows 7 and windows 10 (64 bit only). For windows 7, also see the note below. Selva Note: On windows7 I would suggest to use this option with either a script that does "ipconfig /registerdns" or with the config option --register-dns (the latter is slow as it restarts the dnsclient service etc., but may be pushed). Without registerdns, at least on my win7 machine, any public dns servers on other interfaces get queries through the tunnel for a long while after the connection is up. As if those dns servers have been specified on the tunnel interface! It doesn't appear to have anything to do with this patch.
