My VPN prevents access to the pwnagotchi WebUI. Whitelisting isn’t an option because the VPN settings truncates the address. Please advise.
subnet issue you need to tell the VPN to allow the 10.0.0.1/24 subnet in your VPN if it allows it. and encompass the rndis device you communicate with pwnagotchi over… its a chore for sure.
For some reason Kaspersky VPN only allows for the whitelisting of domain names; ip addresses get truncated. I thought I could maybe edit the hosts file to make a fake domain name resolve to the ip address but either I’m doing it wrong or that doesn’t work.
//looks like this isn’t going to work because neither hosts nor the VPN will allow me to specify port numbers.
What VPN are you using? Are there any other VPNs that aren’t compromised?
if the VPN is redirecting you when you type a URL… sounds like DNS…
Could you perhaps add to your VPN additional DNS addresses, if so tell your VPN to use 10.0.0.1 as a DNS as well that’s the gateway for the pi so if the VPN knows requests for 10.0.0.1:8080 aren’t in their DNS then it should fall back to your added DNS servers and so should find the pwnagotchi in that subnet 10.0.0.1/24 through the gateway 10.0.0.1, at address 10.0.0.2 allowing you to also specify the port.
I use a few VPN’s, Avast one, google one, and a reverse VPN through a home hosted Wireguard install. I use the first two at home to look like I’m somewhere else in the world, and i use wire guard to connect to my local network and look like im at home when im anywhere else in the world and not at home.
but i don’t use my PC to get internet to my pwnagotchi I use BT tether plugin when im out and about, and I use homebase plugin to have pwnagotchi detect my home wifi turn off bettercap, turn of monitor mode on the wifi in the PI, connect to my home wifi and then i interact with my pwnagotchi over a LAN address I don’t use 10.0.0.2:8080 I just use the IP my router gives the pi 192.168.0.xxx:8080
My Kaspersky VPN client only seems to allow for specifying domain names. I’m not entirely sure if I’m going about this the right way though. What I’m after is trying to ensure that all internet requests made from the WebUI remain private.
Um all the request from your host machine to the pi is secure because it never transmits to the Internet only through the USB to your PC… I think you’re trying to guard against something that doesn’t need to be guarded against…
The web ui is just an interface transmitting only to the host machine. That’s not going to the Internet it’s a fake Internet only your PC sees, and that’s coming directly from the pwnagotchi to PC not the internet
If you are doing this for the reason you said I think you might be a bit over your head yet… You need to learn network security ASAP.
pwnagotchi doesn’t push to the internet regularly pwn grid is broken anyway, and the web ui doesn’t pull from the Internet it pulls from a self internally hosted webpage that every button and text box only interacts with your raspberry pi over usb. so pwnagotchi will only send out and receives from the internet when you run a plugin that does so for you… all you need is to turn off your VPN and realize anything on 10.0.0.2 is happening only on your PC from the pwnagotchi… You could even pull the PC off the wifi and Ethernet pwnagotchi web ui works just fine cause it doesn’t NEED Internet because it doesn’t send over the Internet unless you set that up in plugins.
I was under the assumption that your host machine, your big PC needed to be on a VPN at all times… But that’s not the case.
I get all that and the use case does involve plugins, I should have explained it better. Specifically I’m talking about requests initiated at the UI and going out to openstreetmap. The ultimate problem is this; I can’t get into the webUI when the VPN is on.
And YOU won’t be able to do it with the VPN you have… I’m not sure what your plugin is going to be connecting to out on the internet, but I can tell you that the reason you’re not able to access the web UI while your VPN is connected is because the VPN’s job is to tell your computer to not use your internal networking in a way that you’re used to. Instead, it has you use the VPN tunnel it created because of that tunnel, there’s no way for you to communicate with your ponagachi unless you add to that tunnel an exception that allows your computer and VPN to also connect to the local network at 10.0.0.1 and actually communicate with pwnagotchi.
What I’m saying is you set up the ponagachi to communicate with your computer via USB. Now you need to set up the VPN to also connect to your ponagachi via USB
As my boss would say at this point I’ve given you enough information to solve your problem. If you want me to continue further, I’m going to have to charge you a minimum of $15 an hour for my services
Withholding information until you get paid is a super good business strategy but you should definitely charge more. Lucky for me I got it working by uninstalling/re-installing the VPN and adding the ethernet over USB device networking connection in the sharing parameters of the VPN’s virtual adapter. Also I read elsewhere to disable/enable the adapter after it warns about reassigning the USB Ethernet/RDNIS Gadget an IP Address which seemed to be a big part of the problem for w/e reason.