gos-users Yeah it's another by-design leak in the android VPN implementation few know about.

    2 months later

    Anonymous not sure if this is robust enough, so someone with more knowledge please correct me if im wrong, but best option is to use an LTE router with a valid VPN on it.
    Assuming router doesnt have same weak spots as the phone, such as "carrier communications" being routed outside the tunnel/dns.

      gos-users So it would be cool to prevent wifi-calling from bypassing the VPN. This would allow you to have an IP from the country where your operator is, and avoid roaming on wifi.

      it would be cool to have controll of ALL connections of an OWNED device.

        Graphite But carriers fought that fight and won a long time ago.

        Not absolutely! stiil possible to obfuscate tethered data in case if client device allows to adjust its TTL, like any windows machine.

          Anonymous not sure if this is robust enough, so someone with more knowledge please correct me if im wrong, but best option is to use an LTE router with a valid VPN on it.
          Assuming router doesnt have same weak spots as the phone, such as "carrier communications" being routed outside the tunnel/dns.

          edit:
          and assuming LTE carrier wont categorize the setup as tethered connection(if it would, maybe router has option to adjust the TTL to hide that its sharing web access)

          personally only planning to implement the router setup and would greatly appreciate any concerns shared. it is out of scope of GOS obviously, but thought this thread seems best place to ask due to massive discussed above.