VPN Recommendations?
I've been using Hola to create a VPN, and then a friend pointed out this: http://lifehacker.com/hola-better-internet-sells-your-bandwidth-turning-its-... so maybe Hola isn't such a good idea. Any recommendations from this group? Maybe OpenVPN? Thanks - Peter -- Peter Hiscocks Syscomp Electronic Design Limited, Toronto http://www.syscompdesign.com USB Oscilloscope and Waveform Generator 647-839-0325
phiscock@ee.ryerson.ca wrote:
Any recommendations from this group? Maybe OpenVPN?
I'm using the OpenVPN setup from [Sovereign][1] to securely connect to my infrastructure and then use [PIA][2] when I need connect to a service as an America (they are compatible with most VPN clients including OpenVPN). [1]: <https://github.com/sovereign/sovereign/tree/master/roles/vpn> [2]: <https://www.privateinternetaccess.com/>
Never uses Hola... Botnet alert!!! I do prefer do use tunnelbear. On Feb 21, 2016 3:01 PM, <phiscock@ee.ryerson.ca> wrote:
I've been using Hola to create a VPN, and then a friend pointed out this:
http://lifehacker.com/hola-better-internet-sells-your-bandwidth-turning-its-...
so maybe Hola isn't such a good idea.
Any recommendations from this group? Maybe OpenVPN?
Thanks - Peter
-- Peter Hiscocks Syscomp Electronic Design Limited, Toronto http://www.syscompdesign.com USB Oscilloscope and Waveform Generator 647-839-0325
--- Talk Mailing List talk@gtalug.org https://gtalug.org/mailman/listinfo/talk
On 02/21/2016 03:01 PM, phiscock@ee.ryerson.ca wrote:
Any recommendations from this group? Maybe OpenVPN?
I've used OpenVPN in the past and it worked well. However, you may want to consider IPSec, as it's supported by many devices and operating systems. I used to use OpenVPN to access devices behind my firewall over a single IPv4 address, but since I now run IPv6 (with 2^72 addresses) that's no longer necessary. I only allow IMAPS and SSH through my firewall, so I no longer need the encryption a VPN provides.
I don't know if your looking for a plug and play setup. But I have a vpn in the US that installed open vpn and I'm in the stages of adding ad blocking to the oprnvpn connection (blocking ads on model devices) and also build my own DNS to build a unblock.us like system to use Netflix. Setting up openvpn isnt too hard on a vps. Plus my vps system is like $30 a yr and pretty much gives you way more hard drive space and bandwidth then you will need On Feb 21, 2016 3:47 PM, "James Knott" <james.knott@rogers.com> wrote:
On 02/21/2016 03:01 PM, phiscock@ee.ryerson.ca wrote:
Any recommendations from this group? Maybe OpenVPN?
I've used OpenVPN in the past and it worked well. However, you may want to consider IPSec, as it's supported by many devices and operating systems. I used to use OpenVPN to access devices behind my firewall over a single IPv4 address, but since I now run IPv6 (with 2^72 addresses) that's no longer necessary. I only allow IMAPS and SSH through my firewall, so I no longer need the encryption a VPN provides. --- Talk Mailing List talk@gtalug.org https://gtalug.org/mailman/listinfo/talk
| From: James Knott <james.knott@rogers.com> | On 02/21/2016 03:01 PM, phiscock@ee.ryerson.ca wrote: | > Any recommendations from this group? Maybe OpenVPN? | | I've used OpenVPN in the past and it worked well. However, you may want | to consider IPSec, as it's supported by many devices and operating | systems. James: you do realize that Peter isn't actually asking for a VPN, he's asking for a "total solution" for spoofing his node's country, don't you? Peter: that's a bad use of the term VPN. IPSec is a fine answer to the literal question (I'm biased). Spoofing is inherently dodgy. The spoofing exit nodes can generally be catalogued if the server's organization cares. Hola's approach is a little harder to nail due to the diversity of exit nodes (all Hola users in the target country). If Netflix were really trying to ban spoofing, it should be easy to catalogue all IP addresses that use an unreasonably high amount of bandwidth (or have a bunch of Netflix accounts). That would catch all exit nodes that were amortized over an economically reasonable number of customers of a commercial spoofing service. This will fail for Netflix customers behind "carrier grade NAT" (yuck). Those could be whitelisted. I once heard that only DNS traffic had to be spoofed to "fool" Netflix. I have no idea if this was or is true. Spoofing Netflix doesn't appear to hurt Netflix. It only hurts those who hold the licensing rights in the actual country of the user (they don't get paid). In fact, it is a reason many subscribe to Netflix. That is surely why Netflix has been turning a blind eye to spoofing.
participants (6)
-
D. Hugh Redelmeier -
Digiital aka David -
James Knott -
Marcelo Cavalcante -
Myles Braithwaite -
phiscock@ee.ryerson.ca