[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 512
  • Last Modified:

Why do I see my ISP not found page when using VPN ?

Hello,

I am using a VPN connection but when I type an inexistent domain name the ISP's page appears and every css and js files inside that page point to that domain.

When analyzing headers I get:
379 bytes sent to 86.35.x.xxx:80
GET /css/global.css HTTP/1.1
Host: asdasdisdasndasassda.com

11491 bytes received by 127.0.0.1:50465
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 30 Oct 2011 08:53:11 GMT
Content-Type: text/css
Content-Length: 11281

How is this possible ? And how can I stop this ?

I tried changing the dns servers of the VPN connection but didn't worked.

Thank you
0
itudor
Asked:
itudor
  • 8
  • 8
  • 2
  • +1
1 Solution
 
John HurstBusiness Consultant (Owner)Commented:
If you are using Microsoft VPN to access your company services, then you cannot use Internet at the same time on the client machine. This is a function of Microsoft VPN. I use split tunnel IPsec VPN to get around this. .... Thinkpads_User
0
 
itudorAuthor Commented:
I connect to my strongvpn PPTP VPN. I have no problem accessing the Internet. Its just when entering on a browser and typying an domain that doesn't exists I get a custom webpage from my local ISP. And from my understanding if I'm using VPN that shouldn't be possible ?!  I should get an "Address Not Found".

Who can help me understand and fix this ? Is it a problem with my VPN meaning it doesn't encrypt the data packets ? And if so how to fix it ? If I enter on whatismyip.com the VPN IP is displayed so does it work or not ?
0
 
nativevlanCommented:
You are using your local ISP for DNS resolution.
0
Microsoft Certification Exam 74-409

VeeamĀ® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

 
itudorAuthor Commented:
How is this possible ? And how can I stop this ?

I tried changing the dns servers of the VPN connection but didn't worked
.

@nativevlan I have mentioned that I changed the DNS Servers for the VPN connection and that didn't changed anything.
0
 
marcustechCommented:
If you are using Microsoft VPN to access your company services, then you cannot use Internet at the same time on the client machine. This is a function of Microsoft VPN. I use split tunnel IPsec VPN to get around this. .... Thinkpads_User

Dude - VPN connection > Properties > TCP/IP > Advanced > uncheck 'use default gateway on remote network' > Reconnect the VPN > Voila! you can now access remote network resources via VPN while browsing the interwebz through your LAN gateway at the same time!
0
 
itudorAuthor Commented:
@marcustech: great solution for Thinkpads_User :-)

However mine remains unsolved. I would be greatful if I get an answer to my problem.

Thanks!
0
 
marcustechCommented:
itudor, sorry I know that doesn't answer your question.

I don't actually think I fully understand your question.

As I understand it when you attempt to browse to a non existent web-page (non-existent domain) you receive a standard 'not found' page served by your ISP.  This is because the DNS server you use redirects non-resolving queries to a static page.

So the reason you 'get this page' is because that is where the DNS server sent you and your http request.

Open a command prompt, enter 'nslookup' (enter).  This will show the DNS server you are using.

This is expected behaviour.  I'm sorry if I have misunderstood your problem, could you clarify?

Windows chooses which interface to use (VPN or internet connection) based on the interface 'metric' (basically a priority order, lowest first) which is automatically assigned as described here.  The VPN will normally have the lower metric, however if you are not using the default gateway on remote network then all internet traffic will go through your normal connection and thus your normal DNS servers (presumably ISPs).

Also, have you considered the possiblity that your traffic is going through the gateway on the remote network and that happens to use the same ISP as you?
0
 
itudorAuthor Commented:
Ok thanks for your answer. Let me describe the simptoms again. I have a VPN(which is from a different country than my ISP thus they're not using the same ISP) with a connection type PPTP on which I changed the DNS Servers already( the third time I specify this). Then I have my ISP to which I connect through for Internet access.

Step 1. I connect to the internet
Step 2. I connect to the VPN connection

Now if I do nslookup I get:
Default Server: google-public-dns-a.google.com
Address: 8.8.8.8
The above dns server its the one I setup for the VPN connection.

Now following I go to any site displaying my IP, ie. whatismyip.com, snoopmyip.com, etc and the VPN IP is displayed resulting I'm using the VPN connection correctly.

However now when typing any domain that is not registered. for example domain-that-does-not-exist.com I get the ISP custom webpage displayed instead of.. I don't know.. a simple not found from the browser.. So I get the commercials from my own ISP which has an shopping site and other services instead of the classic NOT FOUND.

I also pasted part of the headers in my initial question to get a better idea.

So my question was why is this happening ? Does this mean that my internet trafic is not properly encrypted and my ISP can see it ? How can I fix it ?

A possible answer that I gave to myself before asking the question here was that when the VPN doesn't finds the domain it sends a 404 and my ISP is somehow catching the header and displays their custom webpage. But again this means my internet trafic is not properly encrypted.

I need some deeper knowledge on this one.

Thanks again
0
 
marcustechCommented:
OK, I'm following you now itudor.

I don't think that this necessarily indicates a fault with the VPN, certainly I'm not sure why you think this could mean that your VPN traffic isn't encrypted - as I understand it Windows won't connect the VPN if the encryption isn't working.

Is the ISP page you get the same as your home page?  which browser are you using - can you test with a few alternative browsers to confirm that it happens with them as wlel?
0
 
itudorAuthor Commented:
Yes I have tested with all browsers, I wanted to mention this but I forgot: FF, IE, Chrome, K-Meleon, Safari, Opera, etc.

Also to mention I'm connecting to my ISP through a wireless router on a VDSL connection.
0
 
marcustechCommented:
OK, if you ping <non-existent domain>, does it resolve to an IP?  On your local gateway (ISP supplied modem/router), is it using your ISP DNS servers?
0
 
itudorAuthor Commented:
Yes when using ping it resolves to the same IP I've mentioned in the initial post:

379 bytes sent to 86.35.x.xxx:80

Yes ISP supplied the wireless router. I tried finding the dns servers for the router inside its configuration: 192.168.1.1 but didn't saw where to do it.
0
 
marcustechCommented:
OK, the fact that the ping resolves to an IP means that that DNS result is not coming from google public DNS - see attached screenshot.  Could you please run ipconfig /flushdns and test again?

Is your internet connection configured to use 8.8.8.8 for DNS?
0
 
itudorAuthor Commented:
I can't configure the internet connection as I'm connected through an wireless connection to my router. But yes the VPN connection is configured to use 8.8.8.8 as dns server. And the non-existent domain resolves to an IP while I'm connected through the VPN so clearly there something configured that bypass the VPN connection. I can't understand what and how to disable it.

Thanks for all your help so far marcustech.
0
 
John HurstBusiness Consultant (Owner)Commented:
Make sure you can connect wired to your VPN router once you can, you can perhaps reset your wireless connection.

.... Thinkpads_User
0
 
marcustechCommented:
I can't configure the internet connection as I'm connected through an wireless connection to my router.

You can still configure the default and alternate DNS servers in Start > run > ncpa.cpl > Wireless Network Connection > Properties > TCP/IP > Properties.

At the moment I am thinking that the duff DNS is coming from your router (which may be configured as a DNS server on your wireless connection by DHCP).  The only other possibility I can think of is that your ISP intercepts DNS requests and redirects them to its own servers, but this seems unlikely to me.

I will be honest and say that I don't know how the browser / Windows handles DNS requests that don't get resolved by the default or alternate DNS servers - does it give up immediately or try the DNS on lower priority network interfaces?  I don't know, I'm afraid.  If it does exhaustively query all available DNS servers on all connections then that would explain why it goes to your internet connection rather than the VPN DNS, but I can't confirm this.

As a side note, your ISP shouldn't really be doing this.  It's worth calling them and asking how you can configure the router to use different DNS such as Google or OpenDNS
0
 
marcustechCommented:
Sorry itudor, could you also please confirm that you have run the command: ipconfig /flushdns

Also, confirm that when you run: nslookup non-existentdomain.com you receive 'Google-public-dns-a.google.com can't find <non-existent domain.com>

Thanks
0
 
marcustechCommented:
Make sure you can connect wired to your VPN router once you can, you can perhaps reset your wireless connection.

.... Thinkpads_User

I believe he is using Windows PPTP VPN, rather than a hardware VPN device...
0
 
itudorAuthor Commented:
marcustech I don't think that flushing the dns did the trick however what made it worked is changing the dns server of the "Wireless Network Connection" which I didn't tried earlier.

Thanks for your help !
0

Featured Post

Upgrade your Question Security!

Add Premium security features to your question to ensure its privacy or anonymity. Learn more about your ability to control Question Security today.

  • 8
  • 8
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now