HotSpot Shield does not shield your IP for GRC.com

Well in that case every VPN a person uses will leak DNS. So just get use to it. So in this case, at work, no matter what VPN a person uses, when he goes to whatismyip, he will see the IP of the VPN. But when he goes to GRC he will see whatever DNS the work has chosen, which will more than likely be from a local company, a local internet service.

But if this person connects from home or a local wifi, and when he goes to whatismyip and it shows the VPN, but when he goes to GRC and it shows the DNS of his local internet company, then his DNS is leaking, and *NOT* his IP address. And this can be easily remedied by simply selecting what DNS the computer uses.

 

I have seen security systems that do lock DNS like mentioned. The software locks into the adapters on the client machines and either changes them back automatically or has a ghost adapter which the user can't see. There are ways around them but its kinda long and boring.

 

I don't agree.

If you can change the network setup on your machine, and disable DHCP from the router, it won't be using any DNS servers from the router. But doing that to your employer's machine might get you fired.

Edit: OK, given security systems that lock DNS etc, trying to get around them probably would get one fired

 

Somebody educate me on how, when a good VPN tunnels everything to the foreign server (including DNS), that a company can see anything related to what address the user requests?

PD

 

If it's the company's DNS server that you're accessing through the VPN, then you're still hosed. Or the company might just have a reverse proxy to some public DNS server, like some VPN services do, and one of the company's IP addresses might show up in the GRC scan.