Ξ welcome to cryptostorm's member forums ~ you don't have to be a cryptostorm member to post here Ξ
Ξ any OpenVPN configs found on the forum are likely outdated. For the latest, visit here or GitHub Ξ
Ξ If you're looking for tutorials/guides, check out the new https://cryptostorm.is/#section6 Ξ

Search found 1271 matches

by parityboy
Thu Nov 15, 2018 5:11 pm
Forum: stormphone - the "cryptostorm phone" project [cryptostorm.org/stormphone]
Topic: /e/ mobile phone OS
Replies: 1
Views: 1127

Re: /e/ mobile phone OS

@OP

Interesting article. I wonder if they'll include any features from Copperhead OS?
by parityboy
Thu Nov 01, 2018 11:43 pm
Forum: member support & tech assistance
Topic: Probs with new configs in Ubuntu
Replies: 22
Views: 5643

Re: Probs with new configs in Ubuntu

MOQ888 wrote:kubuntu up and running, CS working well - HOORAY!


:thumbup: :thumbup: :D
by parityboy
Thu Nov 01, 2018 11:42 pm
Forum: member support & tech assistance
Topic: [VyOS] VyOS Complains That ca.crt Is Invalid
Replies: 9
Views: 5432

Re: [VyOS] VyOS Complains That ca.crt Is Invalid

@df

As a router, VyOS is actually OK. As a security device, clearly not so much so I would never use it as an edge device (although some people put their firewalls behind their edge-located routers).
by parityboy
Tue Oct 30, 2018 12:47 pm
Forum: member support & tech assistance
Topic: [VyOS] VyOS Complains That ca.crt Is Invalid
Replies: 9
Views: 5432

Re: [VyOS] VyOS Complains That ca.crt Is Invalid

@df I blew the VyOS instance away (I'll likely get a mini PC from AliExpress or Banggood and stick pfSense on it) but here's the ca.crt I was using. -----BEGIN CERTIFICATE----- MIIFIDCCBAigAwIBAgIJAKekpGXxXvhbMA0GCSqGSIb3DQEBCwUAMIG6MQswCQYD VQQGEwJDQTELMAkGA1UECBMCUUMxETAPBgNVBAcTCE1vbnRyZWFsMTYwN...
by parityboy
Tue Oct 30, 2018 12:41 pm
Forum: member support & tech assistance
Topic: Probs with new configs in Ubuntu
Replies: 22
Views: 5643

Re: Probs with new configs in Ubuntu

@MOQ888

Hmmm...I have KDE Neon badgering me to update it to its new 18.04 LTS base, but I'm now wondering whether it's worth it. Having said that, my VPN is handled by a router so I wouldn't need Network Manager for VPN duty. :)
by parityboy
Sun Oct 28, 2018 7:21 pm
Forum: member support & tech assistance
Topic: Probs with new configs in Ubuntu
Replies: 22
Views: 5643

Re: Probs with new configs in Ubuntu

@MOQ888

Glad you got working. :D Now we just need Network Manager to support the ECC instances. :)
by parityboy
Sat Oct 27, 2018 3:31 pm
Forum: member support & tech assistance
Topic: [Exits] England Node Not Passing Any Traffic
Replies: 16
Views: 6557

Re: [Exits] England Node Not Passing Any Traffic

@df

I agree. :P On that note, what happened to the Spain node? I see the legacy one has been consolidated onto the Portugal node and the newer configs (including RSA) have no Spain node at all.
by parityboy
Sat Oct 27, 2018 8:15 am
Forum: member support & tech assistance
Topic: [Exits] England Node Not Passing Any Traffic
Replies: 16
Views: 6557

Re: [Exits] England Node Not Passing Any Traffic

@df

Sounds like something might be broken in the kernel running on that machine, or maybe sysctl needs a tweak? No reason why UDP should have issues when TCP works fine and the Windows-optimised instances also work fine.
by parityboy
Sat Oct 27, 2018 7:58 am
Forum: member support & tech assistance
Topic: [SOLVED] Port Forwarding On Legacy Nodes: Broken?
Replies: 6
Views: 1269

[SOLVED] Re: Port Forwarding On Legacy Nodes: Broken?

@df Found it. :D In pfSense on the Port Forwarding page, simply creating the rule isn't enough. There's a field near the bottom of the page which says "Filter rule association". The default selection for this is "None" (no doubt for security reasons). To make the rule active, on...
by parityboy
Sat Oct 27, 2018 6:05 am
Forum: member support & tech assistance
Topic: [SOLVED] Port Forwarding On Legacy Nodes: Broken?
Replies: 6
Views: 1269

[SOLVED] Re: Port Forwarding On Legacy Nodes: Broken?

@df Yep, I have a NAT hole punched in my pfSense firewall for the VPN client address (10.66.216.32) which is in turn forwarded to the VM running my BitTorrent client (which is listening on 45886). Weird - it definitely worked before the upgrade (I checked it with telnet from an outside network). I'...
by parityboy
Fri Oct 26, 2018 4:23 pm
Forum: member support & tech assistance
Topic: [SOLVED] Port Forwarding On Legacy Nodes: Broken?
Replies: 6
Views: 1269

[SOLVED] Re: Port Forwarding On Legacy Nodes: Broken?

@df

I'm currently on 128.127.104.111, port number 45886. Try telneting to it and see if you get a response.
by parityboy
Thu Oct 25, 2018 11:39 pm
Forum: member support & tech assistance
Topic: [SOLVED] Port Forwarding On Legacy Nodes: Broken?
Replies: 6
Views: 1269

[SOLVED] Port Forwarding On Legacy Nodes: Broken?

I've just realised that the port forwarding feature on the legacy RSA nodes - <os>-<location>.cryptostorm.net - doesn't seem to be functional. The setup page at http://10.31.33.7/fwd is there and appears to set the mapping (even complaining when you try to set the mapping twice) but telnet ing to th...
by parityboy
Wed Oct 24, 2018 6:04 pm
Forum: member support & tech assistance
Topic: Probs with new configs in Ubuntu
Replies: 22
Views: 5643

Re: Probs with new configs in Ubuntu

@OP

I'm going to have to dig into this. I'm running KDE Neon (now based on 18.04 LTS but mine is still running a 16.04 LTS base) and I suspect it has a newer Network Manager that accommodates this. Mine looks like this.

Image
by parityboy
Mon Oct 22, 2018 5:23 pm
Forum: member support & tech assistance
Topic: Probs with new configs in Ubuntu
Replies: 22
Views: 5643

Re: Probs with new configs in Ubuntu

@OP Oct 22 21:40:28 e8100i7 NetworkManager[1163]: nm-openvpn-Message: openvpn[7095]: send SIGTERM Oct 22 21:40:28 e8100i7 nm-openvpn[7095]: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity) Oct 22 21:40:28 e8100i7 nm-openvpn[7095]: TLS Error: TLS hand...
by parityboy
Sun Oct 21, 2018 11:05 pm
Forum: member support & tech assistance
Topic: Probs with new configs in Ubuntu
Replies: 22
Views: 5643

Re: Probs with new configs in Ubuntu

@OP

Can you collect and post some logs so we can see what Network Manager is doing? I suspect it's related to TLS handshaking, but I'd like to be sure. :)
by parityboy
Sat Oct 20, 2018 6:56 am
Forum: member support & tech assistance
Topic: block outside dns
Replies: 2
Views: 2907

Re: block outside dns

@marza

I can't really help you on the Windows side of things, but would you ever consider delegating VPN duty to a router? That way you wouldn't have to deal with all the weirdness. :)
by parityboy
Thu Oct 18, 2018 4:46 pm
Forum: member support & tech assistance
Topic: [Exits] England Node Not Passing Any Traffic
Replies: 16
Views: 6557

Re: [Exits] England Node Not Passing Any Traffic

@blurb Yeah, Wireguard looks really nice. Needs more router support and therefore greater adoption, but it needs auditing before anything else. OpenVPN is complex and annoying, but on the other hand it was the first decent VPN that wasn't closed code (i.e. enterprise and therefore expensive and/or ...
by parityboy
Thu Oct 18, 2018 5:47 am
Forum: member support & tech assistance
Topic: [Exits] England Node Not Passing Any Traffic
Replies: 16
Views: 6557

Re: [Exits] England Node Not Passing Any Traffic

@blurb,@df OK, I've tested all of the legacy EU nodes ( linux-<location>.cryptostorm.net ). The following nodes connect and successfully pass traffic: Denmark Dusseldorf Frankfurt Finland Latvia Netherlands Paris Poland Romania Rome Sweden Switzerland The following nodes are broken and refuse to pa...
by parityboy
Thu Oct 18, 2018 3:05 am
Forum: member support & tech assistance
Topic: [Exits] England Node Not Passing Any Traffic
Replies: 16
Views: 6557

Re: [Exits] England Node Not Passing Any Traffic

@blurb Well if I remember rightly, you've got it running on a Tomato-based router (which is based on Linux). I've experienced this issue on both Linux Mint 18.3 and pfSense 2.3.4 (which is based on FreeBSD). Also yes, all of the nodes are physical machines running multiple instances of OpenVPN, eac...
by parityboy
Wed Oct 17, 2018 7:23 pm
Forum: member support & tech assistance
Topic: [Exits] England Node Not Passing Any Traffic
Replies: 16
Views: 6557

Re: [Exits] England Node Not Passing Any Traffic

@blurb This is what I'm getting in my pfSense log: Oct 17 14:18:27 openvpn 22625 Bad LZO decompression header byte: 0 Oct 17 14:18:47 openvpn 22625 Bad LZO decompression header byte: 0 Oct 17 14:19:07 openvpn 22625 Bad LZO decompression header byte: 0 Oct 17 14:19:07 openvpn 22625 [cryptostorm serv...
by parityboy
Wed Oct 17, 2018 7:00 pm
Forum: member support & tech assistance
Topic: Best Node for Australian Members
Replies: 2
Views: 2597

Re: Best Node for Australian Members

@OP Going by this map , I'd say US West coast, based on the links. Failing that, I would suggest the most eastern part of Europe (Poland, Romania); bear in mind that overland links are not shown. Check this link for a list of the node locations. UPDATE I've just realised that we now have a Hong Kon...
by parityboy
Wed Oct 17, 2018 6:48 pm
Forum: cryptostorm in-depth: announcements, how it works, what it is
Topic: The CryptoStorm Speed Test Thread
Replies: 76
Views: 137355

Re: The CryptoStorm Speed Test Thread

@blurb Many thanks for sharing this. :D Ironically, while the newer ECC cryptographic algorithms are much more efficient than the older RSA - requiring much less CPU power for the same level of cryptographic strength - there's a good chance that the older routers (which would actually benefit from ...
by parityboy
Wed Oct 17, 2018 6:37 pm
Forum: general chat, suggestions, industry news
Topic: Token Hashing - OpenVPN user input
Replies: 24
Views: 36353

Re: Token Hashing - OpenVPN user input

@cryptomon It could be then that either the parsing code for the HTML page or the database which actually stores the username/password credentials have not been updated to reflect the update to the HTML page. Having said that, it might be worth looking to see if the router actually stores the crede...
by parityboy
Wed Oct 17, 2018 2:17 am
Forum: member support & tech assistance
Topic: [Exits] England Node Not Passing Any Traffic
Replies: 16
Views: 6557

Re: [Exits] England Node Not Passing Any Traffic

@blurb

Yeah, I confirmed it directly from the desktop with Network Manager. My OP concerned pfSense, but the effect (unfortunately) is the same.
by parityboy
Tue Oct 16, 2018 9:30 pm
Forum: general chat, suggestions, industry news
Topic: Token Hashing - OpenVPN user input
Replies: 24
Views: 36353

Re: Token Hashing - OpenVPN user input

@cryptomon

Could you try inspecting the HTML in something like Firefox's debugger? It may give you the ability to alter the HTML (i.e. remove the restriction on the input field) temporarily just so that you can input the hashed token.
by parityboy
Mon Oct 15, 2018 3:35 pm
Forum: member support & tech assistance
Topic: [Exits] England Node Not Passing Any Traffic
Replies: 16
Views: 6557

[Exits] England Node Not Passing Any Traffic

Has anyone else noticed this? I have the NL node configured identically and it works fine, but the England node (5.101.149.7) refuses to pass any traffic.
by parityboy
Sat Oct 13, 2018 7:03 am
Forum: member support & tech assistance
Topic: New configuration files - my setup issues
Replies: 3
Views: 2756

Re: New configuration files - my setup issues

@OP

I'd guess that the IP addresses of the new ecc/ed448/ed25519 instances are not yet in the check databases.
by parityboy
Tue Oct 09, 2018 4:38 pm
Forum: guides, HOWTOs & tutorials
Topic: ASUS router stock firmware OpenVPN working.
Replies: 7
Views: 12655

Re: ASUS router stock firmware OpenVPN working.

Hi, I am running Asuswrt-Merlin 384.7 and I am getting the following in my log: httpd: nvram_check fail: nvram vpn_client_username over length (128 > 64) ovpn-client1[8736]: ERROR: username from Auth authfile 'up' is empty ovpn-client1[8736]: Exiting due to fatal error Any ideas on what I need to d...
by parityboy
Tue Oct 02, 2018 7:11 am
Forum: cryptofree: no-cost cryptostorm network access
Topic: Speeds
Replies: 12
Views: 14278

Re: Speeds

@blurb

That sounds good. :)

Is your connection cable, fiber or xDSL (including hybrid fiber)? Also, would you be kind enough to document your experience in the Speed Test thread? :D
by parityboy
Mon Oct 01, 2018 10:41 pm
Forum: member support & tech assistance
Topic: [VyOS] VyOS Complains That ca.crt Is Invalid
Replies: 9
Views: 5432

Re: [VyOS] VyOS Complains That ca.crt Is Invalid

@df OK, so I tried using NordVPN's certificate (extracted from one of their OpenVPN configuration files) and VyOS accepted it. For posterity, here it is. -----BEGIN CERTIFICATE----- MIIFCjCCAvKgAwIBAgIBATANBgkqhkiG9w0BAQ0FADA5MQswCQYDVQQGEwJQQTEQ MA4GA1UEChMHTm9yZFZQTjEYMBYGA1UEAxMPTm9yZFZQTiBSb290...
by parityboy
Mon Oct 01, 2018 10:11 pm
Forum: member support & tech assistance
Topic: [VyOS] VyOS Complains That ca.crt Is Invalid
Replies: 9
Views: 5432

Re: [VyOS] VyOS Complains That ca.crt Is Invalid

@df I checked using the method you described and yes, it's the RSA cert (1866 bytes long). As for the other certs and keys, seemingly the VyOS scripts expect them regardless of whether they are used or not. Either way, even before I created them, VyOS was whining that Cryptostorm's ca.crt was not v...
by parityboy
Fri Sep 28, 2018 10:52 pm
Forum: member support & tech assistance
Topic: [VyOS] VyOS Complains That ca.crt Is Invalid
Replies: 9
Views: 5432

Re: [VyOS] VyOS Complains That ca.crt Is Invalid

@thread

OK, quick update. I upgraded VyOS to 1.2.0, which runs OpenVPN 2.3.4 It will accept the CA cert for PIA, but NOT the one for Cryptostorm.

I have no idea why. df if you (or anyone else) can offer any ideas, it would be greatly appreciated. :)
by parityboy
Fri Sep 28, 2018 9:09 pm
Forum: member support & tech assistance
Topic: [VyOS] VyOS Complains That ca.crt Is Invalid
Replies: 9
Views: 5432

Re: [VyOS] VyOS Complains That ca.crt Is Invalid

OK, I've found two things: 1) PIA's ca.2048.crt file works perfectly well, while Cryptotsorm's ca.crt does not. 2) VyOS 1.1.8 actually uses OpenVPN 2.1.x, which doesn't connect even to PIA's network so it certainly won't connect to Cryptostorm's. The age of the OpenVPN build on VyOS 1.1.8 might be w...
by parityboy
Thu Sep 27, 2018 5:13 am
Forum: member support & tech assistance
Topic: How to obfuscate VPN usage from ISP in restricted countries?
Replies: 2
Views: 3113

Re: How to obfuscate VPN usage from ISP in restricted countries?

@OP If you're talking specifically about the Cryptostorm VPN service, using the ECC instances will help, since (if I have this correct) they encrypt the handshake between client and server, so it cannot be identified as being OpenVPN. The non-ECC instances cannot do this and so they can be blocked ...
by parityboy
Thu Sep 27, 2018 5:09 am
Forum: cryptofree: no-cost cryptostorm network access
Topic: Speeds
Replies: 12
Views: 14278

Re: Speeds

@blurb

Is the VPN connection on your router or your desktop? If it's on your router, that's pretty bloody impressive! :D
by parityboy
Wed Sep 19, 2018 11:20 pm
Forum: member support & tech assistance
Topic: [VyOS] VyOS Complains That ca.crt Is Invalid
Replies: 9
Views: 5432

[VyOS] VyOS Complains That ca.crt Is Invalid

Background I'm currently running pfSense 2.3.4 as a virtualised router on VirtualBox, however it seems to have issues when the number of connections it needs to maintain (e.g. for torrenting) goes past a certain limit. It's nothing to do with the state table and seems to be more to do with the inte...
by parityboy
Fri Sep 14, 2018 4:34 pm
Forum: member support & tech assistance
Topic: Cryptostorm client can't connect to the darknet
Replies: 21
Views: 22444

Re: Cryptostorm client can't connect to the darknet

@parityboy https://cryptostorm.is/portfwd On that page the qBittorrent screenshot you use shows "Use UPnP /NAT-PMP forwarding from my router" as being selected. Not to nitpick but since Cryptostorm doesn't actually use UPnP (hence the manual port assignment page), it might be better to sh...
by parityboy
Fri Sep 14, 2018 7:14 am
Forum: cryptofree: no-cost cryptostorm network access
Topic: Speeds
Replies: 12
Views: 14278

Re: Speeds

I'm using it to test speeds, and since I torrent a fair bit I'm wondering why it's only getting really poor speeds at times, and if that would carry on with an actual token. Also I have tested with qBittorent and the speeds were the same. Torrents (well seeded ones) download as fast as the processo...
by parityboy
Fri Sep 14, 2018 7:12 am
Forum: member support & tech assistance
Topic: Cryptostorm client can't connect to the darknet
Replies: 21
Views: 22444

Re: Cryptostorm client can't connect to the darknet

df wrote:Oh that's the problem. You're using port 64496. Ports 30000 and up are now reserved for our port forwarding feature.


What port forwarding feature? :P
by parityboy
Fri Sep 07, 2018 5:40 pm
Forum: cryptofree: no-cost cryptostorm network access
Topic: Speeds
Replies: 12
Views: 14278

Re: Speeds

@bentbanana223 Just out of interest, why are you torrenting over Cryptofree? Cryptofree is really a taster service and is useful for low bandwidth services such as IRC, instant messaging and email (depending on email content, obviously). It also serves as a backup if your token has just run out; to...
by parityboy
Wed Sep 05, 2018 3:26 pm
Forum: cryptofree: no-cost cryptostorm network access
Topic: Speeds
Replies: 12
Views: 14278

Re: Speeds

@OP

I've just done a speed test using Cryptofree to grab a test file on CacheFly's CDN. I'm getting around 40-45KB/s (320-360Kbit/s). This is on an 8Mb/1Mb ADSL connection.

Could it be that Cryptofree is choking, or maybe mis-configured?
by parityboy
Wed Sep 05, 2018 3:15 pm
Forum: member support & tech assistance
Topic: cryptostorm no longer compatible with openvpn connect on ios
Replies: 3
Views: 5197

Re: cryptostorm no longer compatible with openvpn connect on ios

pedro_cucaracha3 wrote:Does anyone know a good alternative? Or is there a better way to let them know besides leaving a 1-star rating in the app store?


You could try email the OpenVPN team directly. Also, have you tried using the un-hashed token to see if that works?
by parityboy
Tue Sep 04, 2018 5:49 am
Forum: cryptofree: no-cost cryptostorm network access
Topic: Speeds
Replies: 12
Views: 14278

Re: Speeds

@OP

If I remember rightly, Cryptofree is limited to 1Mb/s download speed (can't remember what the upload is).
by parityboy
Sun Aug 26, 2018 10:47 pm
Forum: crypto, VPN & security news
Topic: [BleepingComputer] VORACLE Attack Can Recover HTTP Data From VPN Connections
Replies: 2
Views: 8365

Re: [BleepingComputer] VORACLE Attack Can Recover HTTP Data From VPN Connections

@Fermi

Cryptostorm has always disabled compression though, correct?
by parityboy
Tue Aug 21, 2018 9:58 pm
Forum: crypto, VPN & security news
Topic: [BleepingComputer] VORACLE Attack Can Recover HTTP Data From VPN Connections
Replies: 2
Views: 8365

[BleepingComputer] VORACLE Attack Can Recover HTTP Data From VPN Connections

VORACLE = CRIME for VPNs VORACLE is not a new attack per-se, but a variation and mix of older cryptographic attacks such as CRIME , TIME , and BREACH . In those previous attacks, researchers discovered that they could recover data from TLS-encrypted connections if the data was compressed before it ...
by parityboy
Fri Aug 17, 2018 4:06 pm
Forum: member support & tech assistance
Topic: Linux Mint 19 repository OpenVPN does not have a Release file
Replies: 3
Views: 10200

Re: Linux Mint 19 repository OpenVPN does not have a Release file

@OP

Yep, I just tested this myself and it appears that the OpenVPN team don't have a build for Bionic Beaver. Additionally, I noticed that on their repository page, Bionic isn't listed.
by parityboy
Thu Aug 02, 2018 2:04 am
Forum: member support & tech assistance
Topic: Linux Mint 19 repository OpenVPN does not have a Release file
Replies: 3
Views: 10200

Re: Linux Mint 19 repository OpenVPN does not have a Release file

@OP The package for OpenVPN isn't built for Mint 19 Tara but for the Ubuntu version Mint is built upon, namely 18.04 Bionic Beaver, so there will be an entry in either /etc/apt/sources.list or in one of the files in the /etc/apt/sources.list.d directory which reads "deb http://build.openvpn.ne...
by parityboy
Mon Jul 30, 2018 2:16 pm
Forum: member support & tech assistance
Topic: Does Cryptostorm VPN work with Google Wifi?
Replies: 2
Views: 6592

Re: Does Cryptostorm VPN work with Google Wifi?

@OP I don't use Google WiFi so I have no evidence, but if it fails to work it's likely because they are blocking either port 1194 (OpenVPN's default port) or port 443/UDP (commonly used by VPN providers to get past firewalls). In such an environment, you could use port 443/TCP to connect to Cryptos...
by parityboy
Wed Jul 25, 2018 11:44 pm
Forum: cryptostorm in-depth: announcements, how it works, what it is
Topic: Tokens - recurring vs 1-shot
Replies: 3
Views: 8116

Re: Tokens - recurring vs 1-shot

@OP

It's the right sub-forum. :) I don't see any downsides at all. If you have the cash up front, it's definitely worth it. :)
by parityboy
Wed Jul 25, 2018 11:41 pm
Forum: member support & tech assistance
Topic: paying in bitcoin, alpha-numerical address
Replies: 2
Views: 6759

Re: paying in bitcoin, alpha-numerical address

@OP

1. You could use a service like WebQR to upload the QR code image to.

2. Yes, the countdown on the token activates on first use. If you don't use it, it will last for as long as Cryptostorm are providing VPN access.
by parityboy
Fri Jul 20, 2018 7:00 pm
Forum: member support & tech assistance
Topic: OpenVPN Gnome error on Kali
Replies: 1
Views: 6137

Re: OpenVPN Gnome error on Kali

@OP

Is openvpn already installed on your system? You can find out by doing this:

Code: Select all

which openvpn


If yes, then simply try to import a VPN configuration file from the NetworkManager menu. If not, install openvpn then try to import the configuration file.
by parityboy
Wed Jul 18, 2018 10:11 pm
Forum: member support & tech assistance
Topic: Unable to connect to LAN (except router) while connected
Replies: 7
Views: 9292

Re: Unable to connect to LAN (except router) while connected

@Boens If you enter the command I posted can you then ping anything on VLAN20 from your Linux machine? If yes, then the router already knows how to route traffic between the VLANs. If no, you'll have to configure your router accordingly. By "permanent change" I mean that the route to 192....
by parityboy
Wed Jul 18, 2018 1:41 am
Forum: member support & tech assistance
Topic: Unable to connect to LAN (except router) while connected
Replies: 7
Views: 9292

Re: Unable to connect to LAN (except router) while connected

@Boens

Assuming that routing between VLANs is handled by your router, you could try something like

Code: Select all

route add 192.168.20.0 gateway 192.168.10.1


This will not survive a reboot, however. Making it a permanent change is left to you. :)
by parityboy
Tue Jul 10, 2018 3:08 am
Forum: guides, HOWTOs & tutorials
Topic: Tracker Smacker for Modems
Replies: 1
Views: 6333

Re: Tracker Smacker for Modems

@OP 1. Modems can't run OpenWRT, so you have a router. If you have to plug your router into another box to get Internet access, it will still only be a router. If your router can also plug into your phone line, it will be a modem/router (or router/modem). 2. Those two files are block lists, not cro...
by parityboy
Fri Jul 06, 2018 10:22 pm
Forum: member support & tech assistance
Topic: ECC port 5060?
Replies: 3
Views: 7407

Re: ECC port 5060?

@maltfield

The non-ECC instances are already running on UDP/443 which helps to support clients which do not or cannot have the latest version of OpenVPN installed. Additionally, I do not know if OpenVPN can auto-negotiate between ECC and non-ECC ciphers.

Perhaps it can't?
by parityboy
Tue Jul 03, 2018 6:29 pm
Forum: member support & tech assistance
Topic: cryptostorm freezes sometimes when disconnecting
Replies: 8
Views: 13296

Re: cryptostorm freezes sometimes when disconnecting

@marzametal

Yeah it's all good here, keeping the home fires burning. :D
by parityboy
Sun Jul 01, 2018 6:21 am
Forum: member support & tech assistance
Topic: cryptostorm freezes sometimes when disconnecting
Replies: 8
Views: 13296

Re: cryptostorm freezes sometimes when disconnecting

MARZA!!! :D

It's been a loooong time, my friend. How are you?
by parityboy
Fri Jun 29, 2018 7:02 pm
Forum: member support & tech assistance
Topic: Why was Stripe disabled?
Replies: 5
Views: 8310

Re: Why was Stripe disabled?

@OP

No, I'm not ignoring it. I'm not staff, so I have no information regarding Stripe. df or Fermi would be better people to ask.
by parityboy
Mon Jun 25, 2018 7:35 pm
Forum: member support & tech assistance
Topic: Geo locked Streaming
Replies: 2
Views: 7310

Re: Geo locked Streaming

@OP Just to be clear, you are at home and trying to stream from Hulu, Netflix etc from behind your pfSense instance (which is configured to use Cryptostorm), correct? Many of these streaming services make a point of hunting down the IP addresses of the more popular VPN services and adding them to a...
by parityboy
Tue Jun 05, 2018 7:22 pm
Forum: member support & tech assistance
Topic: Not able to connect
Replies: 2
Views: 8437

Re: Not able to connect

@OP

It looks like you are trying to connect to an ECC instance. Can you try connecting to a non-ECC instance and report back on success or failure?

Thanks. :)
by parityboy
Sat Jun 02, 2018 7:29 am
Forum: member support & tech assistance
Topic: [DNS] Domains Not Resolving On Certain Exit Nodes
Replies: 17
Views: 19306

Re: [DNS] Domains Not Resolving On Certain Exit Nodes

@thread

westerndigital.secure.force.com now fails to resolve on England and Frankfurt. This site handles support for Western Digital (warranty, RMA etc.) so I have no idea how it made its way onto a blocklist.
by parityboy
Wed May 30, 2018 3:46 am
Forum: member support & tech assistance
Topic: [DNS] Domains Not Resolving On Certain Exit Nodes
Replies: 17
Views: 19306

Re: [DNS] Domains Not Resolving On Certain Exit Nodes

@df Cheers for the explanation. :) Quick question: can the server push more than one DNS server entry to the client? Are they stacked on the client, i.e. last in first out? Also, when the OpenVPN server forks an instance for a given session, can it load a configuration file for that specific instan...
by parityboy
Sat May 26, 2018 5:02 pm
Forum: member support & tech assistance
Topic: [DNS] Domains Not Resolving On Certain Exit Nodes
Replies: 17
Views: 19306

Re: [DNS] Domains Not Resolving On Certain Exit Nodes

@df The only issue with the two-step approach is that it's two steps. :) A small price to pay for better security but you know what people are like. :P One good thing about the password field approach is that it's scalable - you can add switches to activate other features in the future, much like a...
by parityboy
Fri May 25, 2018 6:00 pm
Forum: general chat, suggestions, industry news
Topic: PGP Fail (14May2018)
Replies: 4
Views: 11771

Re: PGP Fail (14May2018)

@df

Neither is KMail, which is what I use. :D
by parityboy
Fri May 25, 2018 5:58 pm
Forum: member support & tech assistance
Topic: [DNS] Domains Not Resolving On Certain Exit Nodes
Replies: 17
Views: 19306

Re: [DNS] Domains Not Resolving On Certain Exit Nodes

@df

I think this was mentioned back in the early days of TrackerSmacker being deployed - since the password credential isn't used as part of Cryptostorm's security model, why not use that as a field to pass switches to the exit node to activate/deactivate certain features?
by parityboy
Fri May 25, 2018 5:53 pm
Forum: member support & tech assistance
Topic: New openVPN ECC config files
Replies: 5
Views: 11316

Re: New openVPN ECC config files

@df To be honest, I'm not so sure regarding the routers. Routers supporting OpenVPN (e.g. ASUS) are pretty popular and (being routers) I'm not sure how many firmware updates they receive after launch or if those updates include updated OpenVPN instances (I doubt it). Most people are still on pretty...
by parityboy
Fri May 25, 2018 5:39 pm
Forum: member support & tech assistance
Topic: Cryptostorm not hiding my IP on Android
Replies: 2
Views: 8511

Re: Cryptostorm not hiding my IP on Android

@OP

it sounds like Android's VPNService isn't intercepting your connection. Which device and which version of Android?
by parityboy
Tue May 22, 2018 4:53 pm
Forum: member support & tech assistance
Topic: OpenVPN Preserving recently used remote address
Replies: 6
Views: 10667

Re: OpenVPN Preserving recently used remote address

@OP

OK, I'm going to test this on a couple platforms and report back.
by parityboy
Fri May 18, 2018 8:09 pm
Forum: member support & tech assistance
Topic: OpenVPN Preserving recently used remote address
Replies: 6
Views: 10667

Re: OpenVPN Preserving recently used remote address

@OP

So to clarify: you have entirely separate profiles created in NetworkManager? You are simply stopping each one and starting the other?
by parityboy
Thu May 17, 2018 7:04 pm
Forum: member support & tech assistance
Topic: KTorrent Authentication Failures
Replies: 0
Views: 11392

KTorrent Authentication Failures

This is something which is probably not specific to KTorrent. In the logs I repeatedly see the following: Authentication to 84.16.240.48 : failure 84.16.240.48 is the IP address for linux-frankfurt.cryptostorm.net . Can I assume that there is another peer that my peer is trying to connect to and is ...
by parityboy
Tue May 15, 2018 5:51 pm
Forum: member support & tech assistance
Topic: How to Test DNSCrypt?
Replies: 2
Views: 9299

Re: How to Test DNSCrypt?

@OP To my shame I haven't actually installed DNSCrypt, so I can only answer your last question. Your system will use the DNS server on the hotel LAN to resolve the FQDN of the exit node, but after the connection is made your system will use the Cryptostorm DNS server pushed to it by the exit node. ...
by parityboy
Tue May 15, 2018 5:44 pm
Forum: general chat, suggestions, industry news
Topic: PGP Fail (14May2018)
Replies: 4
Views: 11771

Re: PGP Fail (14May2018)

@OP

Yeah, Fermi posted in IRC as well. Not good. :(
by parityboy
Mon May 07, 2018 6:21 pm
Forum: member support & tech assistance
Topic: Newbie help
Replies: 2
Views: 8270

Re: Newbie help

@OP 1. The random port option enables clients to get past firewalls which block OpenVPN either by blocking its usual port number (1194) or by blocking UDP traffic on port 443 (HTTPS uses TCP on port 443). 2. I'd guess DNSCrypt would be the culprit here, since it is the one option which (temporarily...

Go to advanced search

Nothing to display.

Login