Sprint HTC EVO 4g
I have droidwall installed and I have it only allowing connections of my choice. I notice in the logs though hundreds of packets from (kernel) not just 1 IP but many, it looks like I'm being bombed?
droidwall detecting any particular app(s) causing all of these IPs to want to communicate with your phone?
I'm assuming it was orbot? I couldn't get orbot to work unless I gave internet access to kernel and (root). Does this sound like the case?
Related
I have 2 old PIX firewalls I can use, or I could could use OpenVPN inside WRT, or anything. I have nothing setup yet.
What's the easiest VPN for the EVO to hook to?
I'm running unrooted 2.2.
There is no PIX or OpenVPN support in Android. If you root and download "VPN Connections" you can connect to a PIX or OpenVPN server. I have connected to each. Make sure to read through the bug reports. The version I was using had a routing problem that had to be corrected in vpnc-script.
I've managed to get my evo to connect a winxp pro box set up as a pptp vpn server. but only if I disable encryption on the evo. which kind of defeats the purpose.
Basically, android VPN support is spotty at best. There is an epically long google code thread on the subject.
For the time being setting up an ssh server and using connectbot seems to the best way to securely access remote networks. It's far from perfect but it's the best solution I've seen.
Some people have reported vpn success using custom roms. But they are the exception. And setting up an ssh server is probably easier than tweaking a custom rom, IMHO.
This conversation is over my head, but Logmein Ignition owns my soul.
Thanks everyone.
I might have to root my EVO again(last one was rooted, but had to get a new EVO through warantee)
Say I download an apk from market.
There are times that I don't want it to access Web (so as not to download any ads and get over my monthly cap). Still i want it to have access to my 192.168.x.x home network.
Is there any way to do this (access only certain IPs per apk)? I'm using Linux and I don't even know how to do it there. So I dont know what to look as to get some ideas.
Probably an ad blocker will take care of downloading banners and such. There might be some apps on the lines of Droid Wall which might allow you to filter traffic. I've never used it.
If you are trying to access your LAN I'm assuming you are using your wireless connection and you might be able to filter traffic from you AP if it has the proper tools and APs usually do.
First of all thanks for the reply.
Ok, an ad-free script could be possible but how can one find out what IPs are being used from a specific apk?
As far as I know there is no log that logs the sockets that are open or even better have been opened...
P.S.: I know my apk pid. The issue is to find out which IPs it uses...
Use terminal emulator to issue "netstat -a" command. I really think that DroidWall could help.
DroidWall cuts all connections (say all wiFi connections)!!! And I don't want that. I want my apk to be able to connect to my home network but cut off all other connections. But only for the specified apk.
netstat -a doesn't say which application uses which port.
Thanks for the ideas. I have already tried those. Feel free to tell other ideas as well though.
Howdy folks, I am looking to find out if there is a way to have Wifi show as active and the primary network connection when the FireTV is actually connected via Ethernet. Many apps, specifically streaming apps, require a wifi connection and will not run without it. I prefer to run my FireTV via Ethernet due to the environment mine is in.
This type of hack or workaround would also be useful for the Ouya and any other android device that has an Ethernet port.
To sum up, I am looking for a hack or workaround that will present the Ethernet connection as Wifi to the OS or applications.
I found this document, and page 30 reference what I am looking to do:
http://www.elinux.org/images/9/98/Dive_Into_Android_Networking-_Adding_Ethernet_Connectivity.pdf
Thoughts?
Thanks!
This would benefit our android phones as many apps won't work over carrier network to avoid data overages. I got unlimited data and get better speeds from Verizon than I do at home. If it was an app, xposed module, or some other mod, I would pay for it.
Sent from my One M8 using Tapatalk
A better way would be contacting the developers of that particular app and having them fix it, so that Ethernet is treated the same way as Wi-Fi.
Chahk said:
A better way would be contacting the developers of that particular app and having them fix it, so that Ethernet is treated the same way as Wi-Fi.
Click to expand...
Click to collapse
It is only an assumption, but I am guessing that apps such as the Xfinity TV app by Comcast are setup that way so that people can not use devices such as the FireTV and the Ouya as a replacement for renting a set top box from them. Yes, I can get around this issue by going on wifi, but why use an worst connection method when there may be another way around it? Also Androids open environment is supposed to encourage the creation of alternative ways of doing things.
Looking through other threads, there appears to be a desire for an app that spoofs wifi for people who are also only on 4G or other wireless methods. Having an app on android that could spoof a wifi connection when you are 3G or 4G wireless would be just as useful for some people.
Spelvin said:
Looking through other threads, there appears to be a desire for an app that spoofs wifi for people who are also only on 4G or other wireless methods. Having an app on android that could spoof a wifi connection when you are 3G or 4G wireless would be just as useful for some people.
Click to expand...
Click to collapse
I can see the usefulness of such an app, but it would probably require a rooted device. As far as I know, Fire TV has not been rooted yet.
It has been rooted. But the method has not been shared yet. I believe he said it wasn't ready for release yet. Something along those lines. At any rate it will be eventually
Sent from my One M8 using Tapatalk
Since Fire TV is rooted how do we go about faking WiFi when wired?
Looks like it actually exists!
http://repo.xposed.info/module/com.lemonsqueeze.fakewificonnection
You need Xposed installed to run it.
Enjoy!
I want to prevent my carrier from knowing that I am using CM11's native Hotspot or Tethering features. I know that they can look at the TTL of packets or analyze the traffic (Windows Update, Steam) to detect this. I have a subscription to a VPN service, Private Internet Access, which has an app on Android. If I enable the VPN mode of this app, will all the Hotspot traffic be routed through it, completely invisible to the carrier?
Searching showed me some conflicting answers on this, with some people saying to run it on the tethered device, and others saying to run it on the phone. I am thinking running VPN on phone, as the packets should appear to originate from the phone, rather than something 1 hop behind it.
kcattakcaz said:
I want to prevent my carrier from knowing that I am using CM11's native Hotspot or Tethering features. I know that they can look at the TTL of packets or analyze the traffic (Windows Update, Steam) to detect this. I have a subscription to a VPN service, Private Internet Access, which has an app on Android. If I enable the VPN mode of this app, will all the Hotspot traffic be routed through it, completely invisible to the carrier?
Searching showed me some conflicting answers on this, with some people saying to run it on the tethered device, and others saying to run it on the phone. I am thinking running VPN on phone, as the packets should appear to originate from the phone, rather than something 1 hop behind it.
Click to expand...
Click to collapse
To the best of my knowledge, they could easily know that you are connecting to the VPN tunnel as it utilizes a certain ports. However if it's correctly set up and utilize a secure protocol, all your traffic will get through the VPN and your ISP won't be able to decipher your online activities and your connection type or make sense of your internet traffic.
In other words, you may be using the VPN to connect to websites A, B, and C and send all sorts of interesting information to those websites; or send email; or whatever. Your ISP can see none of that. All they can see is encrypted data that they can't decrypt. So they know you're using a VPN, but they don't know what you're using it for.
Hope it could help.
I am trying to figure out how to best tether my phone without my carrier throttling me down or detecting this and getting some exorbitant bill.
Both of these things are important to me but I am trying to find a balance between shielding my tethered traffic while also:
1. Not killing my battery so quickly
2. I am concerned about a notification that I am overloading the CPU on my device.
Equipment\Software:
Samsung Galaxy S9 4 GB RAM w/o Root
SecureTether (Google Play Store)
NordVPN (Paid Subscription)
Major US Carrier w/ Unlimited Data
Dell Inspiron 5559 (Only device tethering to phone)
Here is some of the background:
I get a notification on my phone, no matter how I set things up with Secure Tether and NordVPN either running on my laptop or on my phone.
"Some appications or processes are overloading the System (CPU) and need to close.
How serious is that message?
Critical to protect device or more just a power consumption or load bearing metric?
I keep my phone plugged in when I'm tethering 99% of the time so the power consumption doesn't bother me, but I want to make sure I am not doing something that is detrimental to the phone. Everything looks like it's working correctly and the internet works fine and isn't lagging on my laptop or phone.
Secondly,
I want to use my VPN provider (NordVPN) to setup a VPN to shield my my carrier, to be on the safe side that they can not see my traffic and/or that I am not using their metered hotspot connection. This comes with a performance and power penalty so, I know a VPN is a good idea but is it necessary in order for my carrier not to find out I am using something else to tether my device. This is just for some more general knowledge.
Third,
I can use NordVPN on my device or my laptop and both work fine on either device, in both cases though I get the message: "Some appications or processes are overloading the System (CPU) and need to close."
I can tether my laptop to my phone and then connect NordVPN on my laptop and it takes a minute to connect but it does and when it does. everything works fine.
I was skeptical it would work fine because in order to setup Secure Tether you need to setup not only a basic WiFi connection on my laptop but also use a VPN (SSTP-->192.168.49.1:8822) from my laptop to phone, even before throwing NordVPN into the mix, but
Configuration One:
Laptop ---> Secure Tether WiFi ----> Secure Tether VPN (SSTP 192.168.49.1:8822)----> Connect Nord VPN on Laptop ----> Internet. (((Laptop has NordVPN Internet))) (((Galaxy has clear Internet)))
Configuration Two:
Laptop ---> Secure Tether WiFi ---> Secure Tether VPN -----[[Connection Established to phone]] ----> Connect Nord VPN on Phone ---> Internet (Laptop and Phone)
I am looking for some feedback to see if that first configuration is:
First, Masking my Tethered Traffic correctly. I am only shielding my tethered Internet and otherwise my phone is using normal Internet. I only care about my carrier not seeing that I am tethering my laptop essentially.
Second, taking some of the load off of my phone by not running both services (SecureTether and NordVPN) on it.
But then I thought, if my carrier is seeing a lot of VPN traffic and some clear traffic that might look worse, because generally when you run a VPN on your phone everything runs through it, so with half and half traffic, they may suspect that I am tethering something but they wouldn't be able to necessarily prove it.
But just raising red flags might be enough to warrant a closer look at my account, so it might just be better to run NordVPN on my phone and send all traffic through it.
I only really have this one device connecting to my hotspot, one laptop so it isn't like I have 5 devices each running their own VPN and probably creating more work for my phone with constantly open VPN connections. With one device there has to be an open VPN connection somewhere device/computer and it doesn't matter where it is because it's the same amount of traffic/bandwidth used up anymore, it's just a matter of where it is.
With multiple devices it would be more advantageous to run a single VPN connection on my phone and this generates less traffic/uses less bandwidth?
Am I correct in assuming that with 1 device this first configuration takes some of the load off of my phone because it is just passing data through rather than running the VPN service itself.
Either configuration works for me, I would think that Configuration 2, that is, connecting\running Nord VPN on my device would be a better option from a security standpoint and it simplifies things because:
A. Any device connecting to the hotspot is using the VPN automatically.
B. All of my phone data, hotspot or not is being sent through the VPN.
However, the // [major [/I ] // downside is that power runs through your phone like a sieve and the load on the CPU is increased.
I just got this S9 a few days ago and I am switching from iPhone to Android so my depth of knowledge isn't developed enough to where a reliable instinctual of how this device handles, so I'm sorry is this seems redundant.
Sorry for the length of this post, I got more nuanced than I thought I would but I wanted everything to be clear and maybe this will help someone else along the way.
Any input you have would be greatly appreciated.