[tor-talk] Tor + VPN + DNS (?)

Aaron Whiteman aaronwhiteman757 at yahoo.com
Wed May 30 19:53:58 UTC 2012 

Thanks - yes, this is what I think happens:

Tor:

Client (me) ---> Tor Node 1 ---> Tor Node 2 ---> Tor Node 3 (exit node) ---> Internet (HTTP or HTTPS).

Internet (HTTP or HTTPS) ---> Tor Node 3 ---> Tor Node 2 ---> Tor Node 1 ---> Client (me).

The DNS is done remotely at Tor Node 3 (exit node).

All traffic from the client to Tor Node 3 is encrypted.  This includes the headers (IP address of the destination) and body of the message.

The client's ISP can only see that the client (me) has connected to the IP address of Tor Node 1.  That's it.  Nothing more.

Correct?

Tor plus VPN:

Client (me) ---> VPN ---> Tor Node 1 ---> Tor Node 2 ---> Tor Node 3 (exit node) ---> Internet (HTTP or HTTPS).

Internet (HTTP or HTTPS) ---> Tor Node 3 ---> Tor Node 2 ---> Tor Node 1 ---> VPN ---> Client (me).

The ISP can only see that the client (me) has connected to the IP address of the VPN.

The VPN owner can only see that the client (me) had connected from my IP address (provided by my ISP) and requests to connect to the IP address of Tor Node 1.

All traffic from the client is first encrypted by Tor and then sent to the VPN which adds its own encryption.  The VPN will decrypt its encryption after the traffic exists the VPN system.  The Tor encryption continues until Tor Node 3.

The return journey will show the Tor encrypted traffic pass through the Tor system until it gets to Tor Node 1 and then enters the VPN system which will add its encryption.  Then, when the traffic reaches the client (me), the VPN will decrypt its encyrption, and then Tor will decrypt its traffic.

Correct?

Many thanks!  I appreciate your time and help.



________________________________
 From: SiNA Rabbani <sina at redteam.io>
To: tor-talk at lists.torproject.org 
Cc: Aaron Whiteman <aaronwhiteman757 at yahoo.com> 
Sent: Monday, May 28, 2012 6:19 PM
Subject: Re: [tor-talk] Tor + VPN + DNS (?)
 
If you use a VPN and then connect to Tor, assuming your application is
sending all packets through Tor's socks proxy, then the answer would be yes!

--SiNA
On 05/27/2012 01:46 PM, Aaron Whiteman wrote:
> I think that if I run Tor with a VPN (and that the VPN does the DNS) then Tor will still do the DNS at the exit node.
> 
> Me ----> VPN ----> Tor Node 1 -----> Tor Node 2 ------> Tor Node 3 (exit node) -----> Internet
> 
> 
> Correct?
> 
> Thanks. 
> _______________________________________________
> tor-talk mailing list
> tor-talk at lists.torproject.org
> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk


-- 
First they ignore you, then they laugh at you, then they fight you, then
you win ~ Mahatma Gandhi

More information about the tor-talk mailing list