Hi, so I was working for a client while in Thailand recently and they discovered my location. I’m wondering how that was possible if I was using wireguard running traffic through my wireguard server at home. When I did a whatsmyip is said I was in Charlotte where the Wireguard server is location. I was hardwired to the airbnb router.
Maybe using wifi in combination with location service on computer browser? (they also use ssid’s to get location, not precise but in area of wifi coverage).
Then your client device tells the server over a vpn line where you are.
1 Like
…and that’s why I would get a “DNS Leak” warning when using Mullvad. I usually have WiFi enabled even though I use an ethernet connection, so that’s why the DNS warning. Thanks for the tip, I would never have thought about that.
Do you use 2FA or company apps on your phone?
Hmm mullvad shows a dnsleak, then my guess is that dnsleaktest.com does aswell.
This mean either the software could be broken, but that is not so easy to know at first hand.
First many web browsers come with something called secure dns, or smart dns, the issue is that it precisely circumvent the dns settings you defined on your system and instead uses Dns over tls or dns over https, the origin mismatch of the dns will cause a leak.
Google is one who does that alot btw, and some devices hardcode dns, just make sure this is turned off and the dns of the router is actually used.
You may have to clean dns in command prompt with ipconfig /flushdns and in chrome: chrome://net-internals/#dns and sometimes even then it keeps cached, you need to give the dns resolver some time if it then still happens maybe the firmware doesn't properly route domains through the dns.
It is important in the dns settings inside the gl firmware you have it set to default value, not manual etcetera, the text explains it also about the wireguard tunnel dns.
1 Like
I've been using Mullvad VPN for a while and had no issues with DNS leak. I switched to PureVPN, then to SurfShark. Also no issues as well. 
Here is my leak test, no problem on gl.inet device.
With that said, unless if you modified the DNS section in the wg.conf, I don't think these VPN companies will leak your DNS. More likely that you used a company app on your phone or SSID location.
So where am I doing that in the glinet router?I don’t use any apps besides the client apps on the laptop and the glinet router is hardwired
This is a company laptop, not my own with all their software. So am I even able to do that? They don’t use chrome they use Edge
No, no company apps on my phone. Closest thing would be autenticator which is there app to autenticate to their global protect app on the company laptop
Are you saying turn of the wifi on the glinet router while I’m using the internet?
My duo authenticator gives away location if location is turned on. I have to put it in airplane mode turn off location services, turn off WiFi and connect via ethernet cable.
Where are you referring to, turn off wifi on the router? Location on the laptop itself?
I disable Wi-Fi on my laptop and phone. My laptop is company issued it allows me to put it into airplane mode and turn off the Wi-Fi and Bluetooth. I have company apps installed but the only one I use is Citrix into the companies Citrix farm. Rather not use any apps on my laptop while overseas.
I have not disabled Wi-Fi on my router yet, I have thought about it since I don’t use it while I am working.
Inside the web browser.
Edge is based on chromium which is the base of Google Chrome.
There must be a setting in your browser for secure dns make sure to turn this off.
I think its in the security settings of the browser, otherwise try searching edge securedns.
I tried to google but I was not able to get a english page from Microsoft it was all dutch.
Secure DNS is turned off on the company laptop so that wasn’t the issue. I don’t turn it off on my personnal phone or laptop as they have no company apps on them
I assume you mean on your personal laptop and phone correct? I can’t turn the wifi off on my work laptop because I don’t hard wire to the router.
If you can’t turn off the Wi-Fi it can be used to track you.
I have a company issued laptop, I can turn off the Wi-Fi.
No, my point is, if you turn off the wifi then you can only be in hotels or airbnbs that you have access to the router to hardwire it. Thats not always possible unless you carry around 50ft Cat 6 cables
Internet access for the router is fine via wifi but for the devices you want to go via the vpn (phone, laptop) the wifi should be turned off and network cable used instead.