Běh VPN a firewall současně? Osobní VPN vs. zařízení VPN?

Ahoj. Hodně jsem hledal na toto téma a nenašel jsem žádné odpovědi. Zdá se, že jsem jediný, kdo se s tímto problémem setkal.

Snažím se provozovat VPN a firewall na svém iPhonu (15 Pro Max, v17.4.1) současně. Nebudu uvádět aplikace, ale konfigurace si můžeš prohlédnout na přiložených obrázcích.

Než začnu, rád bych zmínil, že vůbec nevím, jaký je rozdíl mezi „Osobní VPN“ a „Zařízení VPN“, a z mého hledání to vypadá, že to neví nikdo jiný! Neznám moc o tom, jak je firewall a VPN konfigurováno na iOS, ale připadá mi, že pokud by mi zařízení umožnilo nastavit jednu konfiguraci jako zařízení VPN a druhou jako osobní VPN, vyřešilo by to tento problém.

Ještě jedna věc: jak jsem řekl, moc nevím; podle mého chápání firewall blokuje trackery, zatímco VPN vytváří soukromou síť a je spíše na ochranu IP adresy, metadat, mých informací atd. Ale když firewall a VPN dělají totéž, dejte mi vědět a odejdu se sklopenou hlavou😅

Když nechám VPN a firewall, aby se sami nakonfigurovali přes aplikace, obě přidají „zařízení VPN“. VPN se automaticky nakonfigurová přes OpenVPN (UDP). Když spustím VPN, můj telefon přepne ze firewallu na OpenVPN.

Zkoušel jsem změnit VPN na IKEv2 a smazat OpenVPN. To funguje a umožňuje mi používat jak firewall, tak VPN, protože IKEv2 je přidáno pod „Osobní VPN“. Nicméně po nějaké době VPN automaticky přidá znovu konfiguraci OpenVPN a vypne firewall. Pak běží OpenVPN a IKEv2 současně. Monitoroval jsem to a všiml jsem si, že se to stává, když VPN odpojí a naváže spojení s jiným serverem.

Zkoušel jsem také ručně nakonfigurovat spojení IKEv2, ale bohužel se přidá pod „Zařízení VPN“. Takže si musím vybrat mezi firewall nebo VPN, na rozdíl od přidání pod „Osobní VPN“, kde mohu používat obojí, dokud se VPN neznovu nakonfiguruje.

Co se tady děje? Setkal se s tím už někdo jiný? Není iPhone schopen běžet firewall a VPN současně?

Díky

OK, I try to explain what’s bothering you. There are two things. Surfshark is a VPN Service that establishes an encrypted connection to your VPN service provider. Right? So fare so good?

1Blocker firewall is nothing like that, ist is a filter system, that checks all your traffic and filtering unwanted content like trackers. So 1Blocker puts a little Tracking-Filter-THING right into that place where VPN’s are.

Can you use both together? Nope. I remember discussions some time ago where 1Blocker developer says Apple doesn’t allow 2 VPN’s running at the same time so you now need to decide what’s more important for you.

If you ask me, if you don’t need your Surfshark for business (to login to a business network) turn it off. 1Blocker is the better protection, at least in my humble opinion, because Surfshark doesn’t filter anything (as fare as I know).

VPN Service Provider loves to advertise so much protection but the real protection is not really as much as they suggest you.

Ahh okay! That is a great explanation.

I’m gonna have to go with 1blocker — the amount of trackers it blocks is staggering. I really don’t have much use for the VPN other than ‘privacy protection’, and you’re absolutely right — I found SurfShark from an advertisement just like that . So goodbye to SurfShark.

I knew the “Device VPN” & “Personal VPN” thing had to be too good to be true.

Anyhow, thanks for this comment. Answered every one of my questions & more.

Well if you remove surfshark and rely only on 1Blocker Firewall you will see surfing with safari is faster, at least it is my experience. Try it from time to time with and without to see if you have the same experience.

Hmm I’ll have to look out for that. SurfShark definitely slows things down noticeably, more or less depending on which server is “fastest” at any given time.

It’s wild how many trackers there are. I’ve tried searching them to see where they’re coming from or even to learn more about them; app-measurement.com or api.segment.io for example. First expecting some website to come up. US or Indonesia based on the domain extensions. But nothing came up & there’s no info that I could find, which just interested me even more. I wanna know how these little buggers work & how they ended up on my phone — especially because I always choose “Ask Not to Track” for every app I’ve installed.

“Ask Not To Track” is being ignored by most af all websites. Websites make advertisings and advertisings getting more efficient if the know what you doing to make you fitting advertising in the things you are interested in, it is called personalized advertisings.

There are “Fantastillions” of trackers out there and you will never get rid of all of them. What do they do? Well trackers collecting datas about your surfing behavior. Those datas will be used to make advertisings that fits to your surfing behavior (your interests). Facebook and all the other crappy Zuckerberg Apps do the same but they do it in their apps and there is almost no way to stop that.

So if you use 1Blocker and block all known ads and trackers and whatever websites is throwing at you, you will not see advertisings and you are protected as much as the adblocker community is aware of. Even if they can still track you (because you never know how much tracker exists out there), it doesn’t matter because you blocking the sources of advertisings so you never see an ad.

Here in the EU it is the law that every website has to ask for permission to set cookies and stuff and as a EU citizen you have a right to decline all these things so websites has to ask you and if they do different, they have legal trouble.

I know the US or wherever you are located don’t have these rules or laws so the only thing you can do is … block all these advertisings with a useful adblocker. and 1Blocker is one of them.

Ahh okay. So that’s why it almost seems like my phone is “listening” to me when I talk about something like an Xbox at dinner & when I get home the first thing I see is a commercial for Xbox

I wonder, (I think the answer is no, but I’m going to ask), will this have any effect on my other apple devices I.e my iPad & Apple TV? Because the app is affiliated with my iCloud account? If not, I’m definitely going to download to all my apple devices. I wonder if there’s something similar for Apple TV.