Just a quick post so that someone might learn from my frustration. This morning my Graphene OS Pixel 7 lost all data connectivity. I tried everything I could think of to correct it. I use a proton on all the time VPN. After switching to my laptop, I discovered that I was logged out of my protonmail account. I tried to log back in, but I learned that my account was locked. After security checks and resetting my password my email account was unlocked. I remembered that the proton VPN uses the same login credentials, so I checked my pixel and the Proton VPN was also logged out.
I logged in with the new credentials, and now my data connectivity was restored.
It never occurred to me that the OS wouldn't allow me to use data without the VPN. I appreciate the added security, but can someone with more knowledge explain what I experienced?
503 sats \ 4 replies \ @TonyGiorgio 2 Nov 2023
Someone else mentioned it's in the settings. But AFAIK, graphene has pretty strong guarantees around no VPN leaks meanwhile Apple can't even promise that, they have holes. So it is a good feature. You just need to know how to occasionally stop it when it doesn't work for whatever reason.
Proton makes good products but the last thing I want to do is tie email data to VPN data. Separate it IMO. No account VPNs like mullvad or ivpn are great. You just have to worry about expirations.
reply
1 sat \ 2 replies \ @siggy47 OP 2 Nov 2023
That's exactly what I was thinking. Not best practices tying email to VPN. I'm checking out Mullvad right now. Live and learn.
reply
271 sats \ 1 reply \ @TonyGiorgio 2 Nov 2023
Look at vpn.sovereign.enginneering if you want to go with mullvad. Operates over tor, creates a random ID, lets you pay over LN to fund the ID.
reply
10 sats \ 0 replies \ @siggy47 OP 2 Nov 2023
Thanks for the heads up.
reply
0 sats \ 0 replies \ @kepford 2 Nov 2023
Excellent advice.
reply
584 sats \ 14 replies \ @Zepasta 2 Nov 2023
deleted by author
reply
282 sats \ 1 reply \ @Zepasta 2 Nov 2023
deleted by author
reply
8 sats \ 0 replies \ @siggy47 OP 2 Nov 2023
Exactly. Thanks for the explanation.
reply
14 sats \ 11 replies \ @siggy47 OP 2 Nov 2023
Duh. Thank you. Simple enough. You know what? I'll leave it set as is. I like the added security, and I'll know if it happens again.
reply
218 sats \ 10 replies \ @Zepasta 2 Nov 2023
deleted by author
reply
12 sats \ 1 reply \ @m00ninite 2 Nov 2023
I have this same issue. It's infuriating. I'd be happy to have the feature on, but accessing locally hosted services is a must for me.
reply
0 sats \ 0 replies \ @Zepasta 2 Nov 2023
Exactly.
reply
0 sats \ 5 replies \ @ek 2 Nov 2023
You mean because you can't access your local area network? Since everything must go through the VPN?
Or why shouldn't it work?
reply
0 sats \ 4 replies \ @Zepasta 2 Nov 2023
Not exactly sure, but it doesnt work while this feature is turned on.
reply
0 sats \ 3 replies \ @ek 2 Nov 2023
Where are you hosting your services?
reply
0 sats \ 2 replies \ @Zepasta 2 Nov 2023
Local self-hosting, on a Raspberry Pi at my place.
reply
0 sats \ 1 reply \ @ek 2 Nov 2023
Then I am pretty sure that's the reason. You can only access stuff which is reachable from the VPN servers, which excludes local area networks.
So you need split tunnel or include them in your VPN somehow.
view replies
0 sats \ 1 reply \ @siggy47 OP 2 Nov 2023
I use wireguard on my hosting machine. Do you know if that has a similar setup?
reply
218 sats \ 0 replies \ @Zepasta 2 Nov 2023
deleted by author
reply
410 sats \ 1 reply \ @Bitman 2 Nov 2023
Sounds like you've got it working again.
I've been using proton VPN for a while and had no probs.
Out of interest, have you ever looked into split tunneling? When you do, you can make some apps exempt from the VPN.
I'm all for that and using AFWall+ and displaying the VPN column via settings.
reply
20 sats \ 0 replies \ @siggy47 OP 2 Nov 2023
I have never tried it. As @TonyGiorgio suggested, I am going to separate my VPN from email with Mullvad. Once I'm set up I'll look into split tunneling.
reply
218 sats \ 0 replies \ @2bithits 2 Nov 2023
Some VPN's have a kill switch to stop the internet if the VPN disconnects.
I like using it for privacy, but I remember having a similar experience & it took me a while to figure out that I had enabled the kill switch
reply
218 sats \ 2 replies \ @Signal312 2 Nov 2023
Thanks for writing this up. I'm considering switching, so it's good to have these accounts.
Have you considered writing it up on https://discuss.grapheneos.org/?
reply
1 sat \ 0 replies \ @siggy47 OP 2 Nov 2023
Also, I definitely encourage you to make the switch. I really appreciate the added security and privacy. You dont give up much in the trade off. I have decided not to use any google apps, and I don't access the play store at all. There is a little convenience trade off, but I think it's worth it.
reply
0 sats \ 0 replies \ @siggy47 OP 2 Nov 2023
Thanks for the kind words, but it looks like my problem wasn't graphene OS based. It was the protonVPN setting. I'm sure if could happen on any OS. I don't visit that graphene OS site often. Maybe I should.
reply
218 sats \ 3 replies \ @Zepasta 2 Nov 2023
deleted by author
reply
10 sats \ 2 replies \ @siggy47 OP 2 Nov 2023
Yes. That's my next issue. I use the same protonmail account on an old Ubuntu laptop, and apparently that's where the issue occurred. I guess there was some concern about suspicious activity. I'm still exploring that.
reply
219 sats \ 1 reply \ @Zepasta 2 Nov 2023
deleted by author
reply
0 sats \ 0 replies \ @siggy47 OP 2 Nov 2023
Thanks. I'm obviously still learning! Thanks for the nostr follow. I'll follow back when I log in.
reply
0 sats \ 1 reply \ @orthwyrm 2 Nov 2023
Can you go into detail about this? As a ProtonMail user this has never happened to me. What triggered it?
reply
50 sats \ 0 replies \ @siggy47 OP 2 Nov 2023
It never happened to me before either. I don't have any more information than what I described earlier. I am contacting support.
reply