Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/primaryobjects/vpndemon
Monitor a VPN connection on Linux and kill a process upon disconnect
https://github.com/primaryobjects/vpndemon
bash disconnect dns-leak linux monitoring networkmanager prevent-dns-leaks security shell vpn vpn-connections
Last synced: about 1 month ago
JSON representation
Monitor a VPN connection on Linux and kill a process upon disconnect
- Host: GitHub
- URL: https://github.com/primaryobjects/vpndemon
- Owner: primaryobjects
- Created: 2014-08-24T16:37:35.000Z (over 10 years ago)
- Default Branch: master
- Last Pushed: 2023-01-16T16:28:05.000Z (almost 2 years ago)
- Last Synced: 2024-08-05T09:14:59.541Z (4 months ago)
- Topics: bash, disconnect, dns-leak, linux, monitoring, networkmanager, prevent-dns-leaks, security, shell, vpn, vpn-connections
- Language: Shell
- Homepage:
- Size: 55.7 KB
- Stars: 100
- Watchers: 11
- Forks: 15
- Open Issues: 0
-
Metadata Files:
- Readme: readme.md
- Funding: .github/FUNDING.yml
Awesome Lists containing this project
- awesome-network-stuff - **90**星
README
VPNDemon
=========
### for LinuxVPNDemon monitors your VPN connection and kills a target program upon disconnect. It's the safest and easiest way to help prevent DNS leaks and enhance your security while connected over a VPN.
![Screenshot 1](https://raw.githubusercontent.com/primaryobjects/vpndemon/master/screenshots/screenshot4.png)
It's as simple as this:
- Run vpndemon.sh.
- Enter the name of the target process to kill when the VPN disconnects.That's it!
Install
---1. Download [vpndemon.sh](https://raw.githubusercontent.com/primaryobjects/vpndemon/master/vpndemon.sh) and place it in a folder, such as ~/Documents/vpndemon.
```sh
cd ~/Documents/vpndemon
bash vpndemon.sh
```2. Enter the name of a program to kill when the VPN disconnects. This can be a substring of the name, such as "chrome", "firefox", etc.
![Enter a target process to kill upon VPN disconnect](https://raw.githubusercontent.com/primaryobjects/vpndemon/master/screenshots/screenshot1.png)
3. Click OK to start monitoring.
![Monitoring VPN connection](https://raw.githubusercontent.com/primaryobjects/vpndemon/master/screenshots/screenshot2.png)
3. VPNDemon is now monitoring your VPN connection. If your not already connected to your VPN, go ahead and connect now.
![Detecting a VPN connection](https://raw.githubusercontent.com/primaryobjects/vpndemon/master/screenshots/screenshot3.png)
4. Try disconnecting your VPN. VPNDemon will detect the disconnect, kill all instances of the target program, and update its status.
![Detecting a VPN disconnect](https://raw.githubusercontent.com/primaryobjects/vpndemon/master/screenshots/screenshot4.png)
Installing as an Application
---1. Download [vpndemon.sh](https://raw.githubusercontent.com/primaryobjects/vpndemon/master/vpndemon.sh) and [install.sh](https://raw.githubusercontent.com/primaryobjects/vpndemon/master/install.sh). Run install.sh.
```sh
cd ~/Documents/vpndemon
sudo bash install.sh
```2. After installing, open the start menu and search for VPNDemon. Right-click the result and select "Add to Panel" or "Add to Desktop".
Technical Details
---VPNDemon monitors the VPN connection by listening to events from the linux [NetworkManager](https://wiki.archlinux.org/index.php/NetworkManager). When a VPN connect/disconnect event is received, the signal is checked to see which state it relates to. If it's a connect state, the status is simply displayed in the main window. If it's a disconnect state, VPNDemon immediately issues a kill command for all processes that match the target process name:
```sh
for i in `pgrep $killProgramName`
do
kill $i
done
```Since the NetworkManager is being listened to, directly via the [dbus-monitor](http://dbus.freedesktop.org/doc/dbus-monitor.1.html), disconnect events are detected almost instantly. Likewise, the target process is killed almost instantly.
VPNDemon should be compatible with any linux system that uses NetworkManager for VPN connections.
Troubleshooting
---1. A log file is saved to /tmp/vpndemon, which contains the list of VPN connect/disconnect events and a list of processes terminated. The log is cleared each time the app is run. However, you can review the log during or after running the app, to help determine any troubleshooting issues.
Preventing DNS Leaks with IPv6
---If you want even tighter privacy, you can disable IPv6. This is easy to do. IPv6 incorporates hardware MAC addresses, and since many VPN services do not yet route IPv6 traffic, it creates a potential leak for network activity.
To disable IPv6, edit the file /etc/sysctl.conf and add the following lines:
```sh
net.ipv6.conf.all.disable_ipv6 = 1
net.ipv6.conf.default.disable_ipv6 = 1
net.ipv6.conf.lo.disable_ipv6 = 1
```
After making these changes, refresh the file by running:
```sh
sudo sysctl -p
```
To verify IPv6 is actually disabled, run ifconfig and verify that "inet6" is not present in the output:
```sh
ifconfig | grep inet6
```License
----MIT
Author
----
Kory Becker
http://www.primaryobjects.com/kory-becker