Without root there's no other way to route all traffic and android doesn't allow chained vpn's.
It's an excellent app, source code is on github, eventually ended up paying for it. There's far too many apps and system binaries dialing out, it's funny to watch in realtime. What's more amazing is how nothing breaks even when you lock down everything but the few things that need it. Blocking is fine grained and you'll have to scroll through a massive list if you choose to view system apps, but quite happy overall.
Main benefit of the paid option is pcap files. Free version does everything most will want. It's on fdroid.
Which amazes me. Chrome does this check every time network settings change, including a new IP. So your Android phone connecting to various networks just spammed this stuff for no reason. The fact that this fixed dropped root server requests by nearly 50% is astounding.
> app #12 that has God-knows-what baked in and that's going to be abandoned in two years anyway.
It was a revelation putting a Pihole on the network and making a firewall rule that forced any non-Pihole port 53 traffic back to the Pihole.
Samsung and Google make a lot of connections to home.
If anyone's looking for an android project, please make one that forwards all hotspot traffic over whatever VPN is enabled. I guess the phone will need rooting.
By the way, my colleague has some crappy Huawei phone, which previously killed background apps [1], but this week received an update that changed the behaviour to simply disabling them from accessing the internet.
I use a VPN for privacy, which is great, but routing my traffic through it will exclude me from sites that try to block VPNs (mostly streaming services).
What I really need is Cloudflare's WARP via wireguard config. I love the idea that they'll shield me from my ISP but still provide my real IP to service providers.
Cloudflare, if you're listening, is it ok to extract wireguard credentials from your app and use them on my whole network? I'll gladly pay the $5/mo, but I don't want to be banned from Cloudflare or do something you may construe is illegal by extracting keys from your Android app.
I don't know how they're accomplishing it technically, but http://getcloak.com manages to auto-enable my VPN on my iPhone every time I connect to a non-whitelisted wireless network.
I do this, any traffic to port 53 gets re-directed using IP masquerading to my local DNS server which uses the blocklists from https://github.com/StevenBlack/hosts.
By coincidence since I did that I need to do a hard reboot of my Mi Box android tv device everyday as when you turn it on from standby and open Youtube / Netflix it goes in to a frozen state.
reply