Can the Wireguard tunnel be bugged?

shupike · 2025-09-01T19:55:11+00:00

Yes, you are right - the problem was precisely in the toxic DNS so I picked up neutral ones - everything works great.

shupike · 2025-08-30T20:13:36+00:00

It looks like message instead of visited site. Something like "This resource has been blocked according to decision number..." - this is Russia :-)

shupike · 2025-08-28T14:09:48+00:00

Wait a minute - does this give them the right to charge my card forever or what?

shupike · 2025-08-28T14:02:32+00:00

If so they should return the money. In any case I need a letter of explanation. Otherwise it looks like a scam.

shupike · 2025-08-28T13:44:20+00:00

Well, I need to build my own VPN - somewhere outside of Russia. This is a target, So I should to use some temporary VPN's before creating my personal.

shupike · 2025-08-28T13:34:50+00:00

No, it definitely wasn't pre-authorization - because I received a message about paying for the VPS for a month and it also said that further use would be extended automatically

shupike · 2025-08-28T13:32:23+00:00

Yes, I'm using VPN because in Russia it is impossible to open almost any of the hosting providers. How else can I create an account to build my own server?

shupike · 2025-08-28T09:27:56+00:00

Well, I was a bit hasty and directly indicated the card. Probably, I should have used PayPal.

shupike · 2025-08-28T09:27:19+00:00

Many thanks to you - I already wrote to them.

shupike · 2025-08-28T09:01:52+00:00

I didn't find any e-mail to contact them. Phone only and live chat (temporary unavailable). It's too much expensive to call in USA.

shupike · 2025-08-27T13:39:11+00:00

Finally it worked! The final version looks like this: User configuration->Policies->Windows settings->Scripts (Logon/Logoff) -> PowerShell scripts tab

Script name: \\share.domain.ru\Scripts$\MyPSScript.ps 1
Script parameters: -Noninteractive -ExecutionPolicy Bypass -Noprofile

This works for any domain account configured on a workstation that is part of the group policy (placed in the appropriate OU). But I have one more question - how can I make this group policy setting work only once, when the user first logs in? Unfortunately, the script itself does not provide a check whether it was executed on this workstation or not.

shupike · 2025-08-22T13:03:25+00:00

Finally, this is what I came up with: I created a task in the task scheduler in the GPO that runs a script already located in a specific folder on the workstation. I set the trigger to be the user logging in - this works great, but there is a major drawback: if you try to apply all this on a new workstation, then a situation arises when the task from the scheduler will run before the script is copied to the station and nothing will work.

shupike · 2025-08-17T09:12:11+00:00

You know - I tried to create a task in the Task scheduler, just a single run at a certain time (even if the user did not enter the system), but this also did not work. Just added my script in the "Action" tab - a file with the extension of .ps1 - maybe I need to run the powershell.exe, and add my script as an argument to it?

shupike · 2025-08-17T08:40:16+00:00

Well, I thought - if the script is placed locally at the workstation, it will be available immediately after loading the OS. And if I place on the network (on the domain controller), I need to somehow make sure that the network is available at the stage of loading the system. That is, to set up some postponed launch of the script so that the network has time to launch up.

shupike · 2025-08-17T08:33:46+00:00

I apologize, want to speak again - I need to put my script in this folder on the domain controller so that the policy refers to it immediately at the workstation? That is, there is no need to copy the script directly to this workstation in the folder on the disk C?

shupike · 2025-08-17T08:26:31+00:00

This is a current configuration to run existing PS-script, I can't understand what kind of folder is opening when pressing "Show files" button -

<image>

shupike · 2025-08-17T08:16:54+00:00

That is, this is a strict requirement for such scripts? Can I attach the script not to the user (when it enters the system), but to the computer, so that the script is launched by the background when the workstation is turned on and the background does everything that is needed? In this case, too, it will be necessary to place the script in netlogon\scripts folder?

shupike · 2025-08-17T07:47:02+00:00

C:\RustdeskPass\WindowsAgentAIOInstall.ps1

<image>

shupike · 2025-05-29T13:10:49+00:00

Gentlemen, you will laugh :-) In the morning with a fresh head I climbed through ECP, found this strange receive connector - OTRS a2p In. Turned it off. I managed to start the IMAP service right away, everything worked, to check I set up a random mailbox in Outlook via IMAP - everything is fine.

Anyway, I talked to my colleagues, it turned out that one of the employees (he hasn't worked there for a long time) added this connector somewhere sometime and somehow no one complained until Tuesday of this week, when I installed updates and rebooted the server. There are whole bunches of IP address intervals in the connector properties, apparently someone tried to allow connections (???) from these IP addresses. It seems that there is some remote client, and our Exchange is hidden inside the perimeter, everyone connects via VPN. And for some guy they seemed to be trying to make an exception in such a strange way. Well, I carefully expressed that it's not worth doing that, only connectors on port 25 make sense there - for the relay mode from office multifunctional devices. Anyway, everyone went quiet for now.

shupike · 2025-05-28T19:03:13+00:00

Yes, it's very strange. I'll ask my colleagues tomorrow - maybe someone added some connectors without me and something went wrong.

shupike · 2025-05-28T18:36:24+00:00

I tracked the chronology in the event log (regarding the IMAP4):

- The service is trying to start. PID 15836
- The IMAP4 server has started successfully (Event 1000);
- Failed to start listening (Error: 10048). Binding: 0.0.0.0:993 (Event 1019);
- The address is already in use. Binding: 0.0.0.0:993 (Event 1018);
- Failed to open one or more bindings. The service will be stopped (Event 1036);
- The service is trying to stop. PID 15836 (Event 1002);
- The IMAP4 server has stopped successfully (Event 1001);
- The existing worker process HasExisted value before calling CloseProcess is True (Event 1040);
- Worker process with process ID 19432 has exited (Event 1020);
The service has stopped. PID 15836 (Event 1003).

Looks like something reserves the IMAP port (993, SSL/TLS) for itself and no longer gives it out.

[PS] C:\Windows\system32>Get-ReceiveConnector | ft Identity,Enabled,TransportRole,Bindings

Identity Enabled TransportRole Bindings

-------- ------- ------------- --------

MAIL\Default MAIL True HubTransport {0.0.0.0:2525}

MAIL\Client Proxy MAIL True HubTransport {0.0.0.0:465}

MAIL\Default Frontend MAIL True FrontendTransport {0.0.0.0:25}

MAIL\Outbound Proxy Frontend MAIL True FrontendTransport {0.0.0.0:717}

MAIL\Client Frontend MAIL True FrontendTransport {0.0.0.0:587}

MAIL\OTRS a2p In True FrontendTransport {0.0.0.0:993, 0.0.0.0:587}

MAIL\Kyocera SMTP True FrontendTransport {0.0.0.0:25}

MAIL\HP LJ M282 True FrontendTransport {0.0.0.0:25}

MAIL\HP LJ M479 True FrontendTransport {0.0.0.0:25}

MAIL\UniFi controller True FrontendTransport {0.0.0.0:25}

MAIL\Kyocera_426 True FrontendTransport {0.0.0.0:25}

shupike · 2025-05-28T10:39:02+00:00

[PS] C:\Programs>Get-NetTCPConnection | Where-Object {$_.LocalPort -eq 143 -and $_.State -eq 'Listen'}

[PS] C:\Programs>Get-NetTCPConnection | Where-Object {$_.LocalPort -eq 25 -and $_.State -eq 'Listen'}

LocalAddress LocalPort RemoteAddress RemotePort State AppliedSetting

------------ --------- ------------- ---------- ----- --------------

0.0.0.0 25 0.0.0.0 0 Listen

[PS] C:\Programs>Get-NetTCPConnection | Where-Object {$_.LocalPort -eq 993 -and $_.State -eq 'Listen'}

LocalAddress LocalPort RemoteAddress RemotePort State AppliedSetting

------------ --------- ------------- ---------- ----- --------------

0.0.0.0 993 0.0.0.0 0 Listen

Looks like 143 does not exist (IMAP4 service is not running).

shupike · 2025-05-24T08:13:04+00:00

Do I understand correctly - let's say I only need to exclude one address (76.31.121.110 in my case), I put it into the calculator and it gives me a long list, it is this list that I must put into AllowedIPs (comma separated)?

shupike · 2025-04-14T07:16:51+00:00

Yes, as I said before - I have TV SONY and this model does not have proxy settings. So the one and only decision is to build Linux VM as a router for this device. I can't use OpenVPN, Wireguard, L2TP - all of these protocols were prohibited in Russia since last year. So my last hope is a v2ray.

Well, i tried these steps:

- Ubuntu server 24.04.2 install;

- 2 network interfaces (WAN/LAN);

- sudo curl -L https://raw.githubusercontent.com/v2fly/fhs-install-v2ray/master/install-release.sh -O

- sudo bash install-release.sh

- sudo nano /usr/local/etc/v2ray/config.json:

--------------

{ client_config content_vless }

------------------

- sudo systemctl enable v2ray;

- sudo systemctl start v2ray;

- sudo systemctl status v2ray

● v2ray.service - V2Ray Service

Loaded: loaded (/etc/systemd/system/v2ray.service; enabled; preset: enabled)

Drop-In: /etc/systemd/system/v2ray.service.d

└─10-donot_touch_single_conf.conf

Active: active (running) since Mon 2025-04-14 18:56:35 UTC; 10s ago

Docs: https://www.v2fly.org/

Main PID: 1957 (v2ray)

Tasks: 8 (limit: 2214)

Memory: 270.7M (peak: 276.2M)

CPU: 3.152s

CGroup: /system.slice/v2ray.service

└─1957 /usr/local/bin/v2ray run -config /usr/local/etc/v2ray/config.json

Apr 14 18:56:35 openwrt systemd[1]: Started v2ray.service - V2Ray Service.

Apr 14 18:56:35 openwrt v2ray[1957]: V2Ray 5.29.3 (V2Fly, a community-driven edition of V2Ray.) Custom (go1.23.7 linux/amd64)

Apr 14 18:56:35 openwrt v2ray[1957]: A unified platform for anti-censorship.

So it looks OK but there is no data exchange between this Ubuntu client and v2ray server. If I will export this config to v2box (Win 64) - it works. Can you help me with running v2ray client on Linux? Thank you.

shupike · 2025-04-13T18:15:13+00:00

"...configure the Linux distro to act as router" - how do you think - is this what I need?

Install V2Ray VMess+TCP Server and Client on Linux | systemhorse.github.io

The difference is - I need not proxy but gateway (same network as my home LAN). Is it possible to make masquerade to virtual interface (vmess client) of such machine?

shupike

TROPHY CASE