I've recently downloaded Little Snitch.
I'm using a paid VPN service for anonymity, and I wish to use LS to prevent all network connections that don't go through the VPN tunnel, but I cannot figure out how to do that.
Is that possible?
Thanks for your help!
kylepmorris5 wrote:Hi, You can use LS to prevent all network connections that dont go through VPN tunnel. I am using PureVPN with Little Snitch. Follow these simple steps:
Step 1: Install Little Snitch
Go ahead and install Little Snitch.
Step 2: Stop the filter and switch to silent mode
Little Snitch has a tendency to be a bit verbose, and will pester you with questions as soon as any application attempts a connection, which can rapidly get annoying.
Fortunately, there is a “Silent Mode”, which will automatically allow/deny any connection, and offer us some peace while we work on the configuration. So:
Stop the network filter
Set “Silent Mode” to “Deny”
Step 3: Delete all default rules
Little Snitch comes with a couple of default rules. They are mostly harmful, but if you are worried about your privacy, it can’t hurt to be cautious. So let’s start from an empty environment.
Open the “Rules” screen:
Delete or disable all the rules. You may get a few warnings, but just go ahead and do it anyway (you can always restore the factory defaults later).
I only keep 3 main rules:
Outgoing connections to local network
Incoming connections (though it’s safe to disable those as well)
Step 4: Create a new profile
First, we need to enable “Automatic Profile Switching”:
Now, let’s create our VPN profile:
Finally, we restart the network filter:
Turn Wifi on and off
And now Little Snitch wants you to choose a profile. If this your home connection, you could choose the newly created VPN profile. If you are at an unsafe location, or if you simply prefer to have VPN activated at all times, select “Deactivate Active Profile”:
Since the default rules do not explicitly allow any connection, and we have set “Silent Mode” to “Deny”, we basically lost internet access:
That’s what we wanted Let’s now configure the VPN.
Step 5: Creating new rules
We succeeded in stopping access for all applications, but the truth is: the VPN itself needs access. So we need to create a few rules for that.
Try to start the connection:
At this time, the VPN won’t be able to connect, but since we activated Silent Mode, the connection attempts will appear in Little Snitch and we can create new rules:
As soon as the rules are created, the VPN connection will succeed and you will be prompted with the familiar dialog. Choose “VPN & Safe Networks”:
Finally, now that the association has been made between the VPN network and the VPN profile, we need to restore access to all applications. Go back to the rules window, and click “New”. You will need to create 2 rules. One for all applications owned by you, and one for all system applications:
If all goes well, you now have full internet access:
martinleo wrote:We assume that paid VPN is the solution to each and every problem including VPN configuration issues but most of the times we are wrong. Actually, all the paid VPN does not support to setup over different devices. I was using a paid VPN and have faced configuration issues on multiple devices but later I started using ExpressVPN it's the who is reliable in the VPN industry which supports maximum devices and have separate setup guides.
It was mentioned earlier that LS cannot use applescript. This is false, You have to enable Allow gui scripting and scripting addition in preferences under security.
Users browsing this forum: ShawnAsymn and 1 guest