#1660 The connection bypasses the VPN configured in NetworkManager when selecting a region in the routing settings.

[Anonymous]

Originally created by: Engen03

Search first

• [x] I searched and no similar issues were found

Platform/OS

Linux

OS version

CachyOS with kernel 6.13.5-2-cachyos

Hiddify Version

2.5.7

What Happened?

If you set a specific region in Route Options in the application, for example \u2018Russia\u2019, then traffic to some sites goes directly through the physical interface, although VPN is configured in NetworkManager.

region set to other.txt (github.com)

region set to russia.txt (github.com)

As you can see in the tcpdump results taken when visiting ya.ru attached in the files, when the region is set to \u2018other\u2019 all non-local traffic goes through 162.159.192.1, which is the IP address of my VPN (Cloudflare WARP), while when the region is set to \u2018Russia\u2019 the traffic for goes directly through the physical interface to and from the ya.ru domain.

This creates a strong threat of de-anonymisation, and not obvious to the user, as it is specific to some domains.

Minimal Reproducible Example (MRE)

1. Configure any VPN in NetworkManager
2. Set region in Route Options in app to "Russia"
3. visit ya.ru

Expected Behavior

Regardless of the routing rules within an application, it must respect the system's traffic routing settings.

Additional Context

No response

Application Config Options

No response

Relevant log output

No response

Are you willing to submit a PR? If you know how to fix the bug.

• [ ] I'm willing to submit a PR (Thank you!)