Hello,
I have no problem connecting to my VPN using PPTP over both WiFi and 3G.
The problem I am having is that when I use the 3G connection and VPN http requests are not routed through the VPN connection. When using the WiFi connection everything works as expected and http request are routed to my corporate network.
Now, I have set up the URL exceptions and think that I've done everything else I am supposed to (but obviously not). Does ANYONE know which registry settings need to be tweaked to force all traffic (or even just http) to use the VPN when connected to 3G?
Thanks in advance, Maxim.
I had 2 Chromecast working just fine for a long time,one in the main network and the other in the second network in a room that is too far from the main router.
Then one day i disabled UPNP for security concerns and soon after I realized chromecast needed it and enabled it again, however i was never able to set up it again
I tried using many phones like Galaxy S4, RAZR D3, iPhone 6, Windows 7 PC, I tried resetting the Chromecast to factory defaults many times without success, then I tried the other Chromecast and reset it to factory defaults and could not set up it either, so the problem is on my network.
My wi-fi settings right now:
11n only, it's 2.4GHz only
Channel Width automatic,
Channel is set to 11,
IGMP proxy disabled,
[WPA2-PSK-CCMP][ESS](from wi-fi analyzer app)AES with 54.000 seconds group key update period,
My password length is 13 with ! and () and numbers
WPS disabled
Mac filtering disabled,
Transmit power high,WMM enabled,
Short GI enabled,
AP isolation disabled,
beacon interval is 50,
RTS threshold is 2304,
fragmentation threshold 2346,
using a DHCP server,
UPNP enabled(again),
SPI firewall is enabled ALG all enabled but SIP ALG,
Forbid ping packet from LAN,
Ignore ping from WAN(tried without this too, so i don't think it is this),
Parental control is disabled,
My router uses google dns by default.
I don't use any VPN
My router is a TP-LINK TL-WR941ND my firmware is up to date(3.15.9 for V5 hardware) it is connected to another modem that just run as a bridge and nat disabled if i remember right i don't think it is a problem it with it and the only options related to IGMP on it is IGMP proxy and chromecast support says it need IGMP enabled + IGMP proxy disabled so how i check out this?
I also tried moving the chromecast to a TV that is right next to my router, still get 'can't see the chromecast on your network',
I also tried to give the chromecast a permanent static ip, and port forward it(virtual servers on my router) 2-65535 UDP and 2-65535 TCP but still setup won't complete, i don't know what more i can do other than just trash this stupid chromecast and back to see all my series on laptop.
Sometimes i'm able to cast my tab from a little time after a failed setup but then soon it will say 'no chromecast found', my pc runs comodo firewall however it was not giving me any problem and i tried to setup it with it disabled.
For the god sake i just want to be able to watch my series again, anyone please help me! If you need any more info just ask it, i can run wireshark and send some prints if this can help too.
- edit
Tried today with an Ipad and has able to do the setup and got the screen ready to cast, however i see no ports open in UPNP, and the chromecast app on ipad said it was configured but was not possible to dectect it on my network, and also from time to time the screen would go back to 'connecting to your wi-fi' then go back to 'ready to cast' i was able to cast this table as i write this,will see if it will stay stable and come back.
On my Galaxy S4 GT-i9500 on my chromecast still says no chromecast found for some reason, but i'm able to cast from it, however i seems to get black tabs now when streaming to my chromecast which i don't like, verified the same for my Galaxy S5 , for my Ipad and for my Iphone 6, why????????? I can ping the chromecast too however i had 1% loss of packet on 200 pings in the same room as my router.
You mention you have a main network and a second network. Can you elaborate on how those are connected together?
muchtall said:
You mention you have a main network and a second network. Can you elaborate on how those are connected together?
Click to expand...
Click to collapse
The main network is the network of the house and the second network is the network of the backyard, but i'm trying to run the chromecast in the main network, and the second is currently off.
The main network is the tp-link router as access point to a TG862 ARRIS in brigde mode, with firewall and nat disabled.
I think my wi-fi settings are all ok right? So why the chromecast can't setup???
I'd try changing wifi channel to 1 or 6. I'm not a network expert but I'd try that.
It's there any way I can specify priority of one SSID over another in MM? Is there an app or some other method?
I have Xfinity Internet service, so I am able to access any Xfinity WiFi network when I'm out. My home router therefore has both my home SSID and the Xfinity open one. If I'm out, and therefore sometimes connected to Xfinity, I come home and it automatically connects to Xfinity instead of my network and then I can't access my network.
I know I can just tell it to forget the Xfinity SSID, but if there was some way to tell it to always choose my home network over that one, that would be better.
Thank you!
BTW, currently running TEKXodus Hybrid N5 URv8E if it should matter.
I'm looking for a firewall that can connect all connections (on all network interfaces) for specific apps. I had a problem in the past when connected to VPN the apps could access the internet even when supposedly blocked.
afwall
WheelchairArtist said:
afwall
Click to expand...
Click to collapse
There seems to be a bug with afwall which blocks reconnection to a wifi network. For example if I am connected to my home wifi, leave my home, then come back, I would still be using mobile data because of bug in afwall+. rebooting phone fixes this but that's a pain.
refer here and here
I'm using netguard for blocking connections. The app also comes with ad block function.
Hi,
I am wondering, if I am holding it wrong or if anybody else can reproduce my issue:
When using Wireguard over the mobile Network, I am only getting terrible speeds. WG over Wifi, all is well. Also, without WG, all is well. Tunnel off over Mobile, all well. Tunnel on or off over wifi: All well. Only Tunnel on over mobile network is giving terrible speeds. And this is only happening with the S21U. S20+, Tab S6 are fine with WG tunnel over T-Mobile DE.
Constellation: Using WG tunnel on the S21U over T-Mobile DE giving very slow speeds, only several hundred kilobit/s. Device is an SM-G988B DBT (exynos), 256GB.
I have tried:
- using another SIM-Card - problem in the S21U, fine in Tab S6
- rebooted S21U
- checked and reset APN settings
- use different WG endpoints in several countries and over several destination ports
- set the S21 to 5G, 4G, 3G - always slow speeds over mobile
As Wireguard is quite common nowadays, is anybody else expierencing this problem?
Thanks
Yes, trying to bump it, but seriously, nobody using a wireguard VPN?
I just did a wireguard connection, I'm getting 350mbps download to a local server (400mbps internet package), seems to work fine for me
Thanks, @aroy97 - over mobile network, NOT wifi?
Over wifi, all is well, only over data connection it does not work well at all for me.
I am still having this issue. Can somebody please be kind and test?
- Wireguard over MOBILE, not WIFI
- Speedtest
- Speed ok?
Have S21 Ultra and wireguard, use over mobile and works fine - tested over 4g and 5g - speed is fine
Wireguard is based on udp. Your carrier may be blocking udp.
I switched to Wiregaurd protocol in PIA VPN app a while ago as I get better speeds on the VPN connections. Not had any issues with it since flipping from OpenVPN stack to Wiregaurd.
corwin_amber said:
Hi,
I am wondering, if I am holding it wrong or if anybody else can reproduce my issue:
When using Wireguard over the mobile Network, I am only getting terrible speeds. WG over Wifi, all is well. Also, without WG, all is well. Tunnel off over Mobile, all well. Tunnel on or off over wifi: All well. Only Tunnel on over mobile network is giving terrible speeds. And this is only happening with the S21U. S20+, Tab S6 are fine with WG tunnel over T-Mobile DE.
Constellation: Using WG tunnel on the S21U over T-Mobile DE giving very slow speeds, only several hundred kilobit/s. Device is an SM-G988B DBT (exynos), 256GB.
I have tried:
- using another SIM-Card - problem in the S21U, fine in Tab S6
- rebooted S21U
- checked and reset APN settings
- use different WG endpoints in several countries and over several destination ports
- set the S21 to 5G, 4G, 3G - always slow speeds over mobile
As Wireguard is quite common nowadays, is anybody else expierencing this problem?
Thanks
Click to expand...
Click to collapse
I can confirm this situation. I have a S21, no plus or ultra. The issue is with both wireguard app and TunSafe app. Over Wifi no problem, over mobile - almost no throughput. Without WG VPN: no problem whatsoever.
I run the VPN endpoint myself, and so can see that on the other side of the tunnel, a lot of retransmissions (about 10%) and out-of-order packages occur. Tweaking MTU doesn't help.
My mobile provider is indeed also T-Mobile DE. When you tried "another" SIM card - was that also T-Mobile, or one of the other providers here?
Cheers
OMG, finally.
A workaround which makes it a little better is to disable 'Paketplaner auf mehreren Kernen' in Developer Options.
Bit you know what resolved the issue? Found out recently:
Switching the tunnel (not necessarily Transport) protocol to IP v6. It is, however, a bit of a hassle to set up, as I am using an UDM behind a Fritz.
You need to delegate a prefix from the Fritz to the UDM (did a /60), open the Fritz Firewall for the delegated prefix, set the UDM firewall accordingly, do v6 dyndns from the raspis (which are the WG endpoint).
Get yourself an account from mullvad for 5€ per month, there you can easily set up v4, v6 tunnels and test a lot. That is, how I found out.
I have no idea, how this issue can stay all the way up to the Android 12 beta.
corwin_amber said:
A workaround which makes it a little better is to disable 'Paketplaner auf mehreren Kernen' in Developer Options.
Click to expand...
Click to collapse
This did not make any difference on my side. The connection was as slow and with the same retransmission rate as with this option enabled.
corwin_amber said:
Switching the tunnel (not necessarily Transport) protocol to IP v6. It is, however, a bit of a hassle to set up, as I am using an UDM behind a Fritz.
You need to delegate a prefix from the Fritz to the UDM (did a /60), open the Fritz Firewall for the delegated prefix, set the UDM firewall accordingly, do v6 dyndns from the raspis (which are the WG endpoint).
Click to expand...
Click to collapse
Can you pls go into details:
if you are behind a Fritz Box then we're talking about WiFi and not mobile data. Using WiFi along with a wireguard VPN works without trouble for me.
How do you switch the tunnel protocol? Do you mean to define only ipv6 addresses between the two peers, which means: encapsulate ipv6 traffic inside a ipv4 connection?
If so - how is the Fritz Box involved here? If your ipv6 traffic is encapsulated in the tunnel, the Fritz Box cannot see any of the contents, i.e.: doesn't know that there is ipv6 flowing inside the tunnel.
Thanks for a more verbose explanation.
PS: if I assing an ipv6 address only to the config of the mobile client, and the same on the counterpart config on the server, then still I can open the tunnel via WiFi, but not via mobile data. And even if the tunnel is open via Wifi, I cannot transfer data as ipv4 packets don't seem to flow through the ipv6 tunnel (or at least I don't know how to do that, not so experienced with ipv6).
So again - advice is appreciated.
Will go into more detail later, just quickly:
- Paketplaner is making a big difference for me. Interesting.
- I am hosting Wireguard on a raspi behind the unifi UDM, which is behind the Fritz. Everything in the row has an IPv6 address.
- Therefore I am on mobile data and connecting to my home WG instances - Problem is regardless of connecting to home or e.g. Mullvad. And yes, when the S21 is on wifi, no problem at all.
- Switching between protocols: Setting up the tunnel with an IPv6 destination address and being in an IPv6 network (like Telekom DE offers) makes the difference for me. You need to enable a native v6 connection wan side on the Fritz and also enable it on LAN. You need to set up v6 LAN side on the UDM and on the raspi.
- If you are using an 'external' VPN provider, just try setting up an IP v6 connection. V6 addresses, inside it can be v4. If there is v4 or v6 inside the tunnel (peer addresses are v4 or v6) is not making a difference for me.
Do you want more details on Mullvad? There you can get 1 month for 5€ and quickly create qr codes with different settings (v6 tunnel, v4 transport and vice versa or combinations).
All this brought me to the following solution:
The problem is the IPv6-to-IPv4 gateway of Telekom. This gateway comes into play when the APN internet.v6.telekom is used. This is the case on newer devices. Thus we don't see a problem of the S21 here, but what we see is the problem of a "new" device being autoconfigured to use the 6to4 gateway.
If I use the IPv4 APN (internet.telekom), then wireguard works fine on both WiFi and mobile network.
However I'd like to stay with IPv6. For this I configured the wireguard client to use the IPv6 address of my VPN endpoint. But even then I cannot bring up the connection over mobile network.
All in all it seems to me that there is something weird within the Telekom network.