Ξ welcome to cryptostorm's member forums ~ you don't have to be a cryptostorm member to post here Ξ
∞ take a peek at our legendary cryptostorm_is twitter feed if you're into that kind of thing ∞
Ξ we're rolling out voodoo network security across cryptostorm - big things happening, indeed! Ξ
Ξ any OpenVPN configs found on the forum are likely outdated. For the latest, visit GitHub Ξ
Ξ We've updated our CA certificate. All members need to be using the latest ones by Dec 22. See this page for more infoΞ

Search found 1135 matches

by parityboy
Tue Feb 20, 2018 7:47 pm
Forum: member support & tech assistance
Topic: --remote-cert-tls file that is not configged for Windows
Replies: 1
Views: 49

Re: --remote-cert-tls file that is not configged for Windows

@OP Use this config file for using the Cryptofree service on Linux-based systems. I also notice from your log output that you are getting AUTH_FAILED . I'm not sure why you are getting this with the Cryptofree service since it doesn't require a paid token, however you still need to provide a userna...
by parityboy
Tue Feb 20, 2018 7:31 pm
Forum: guides, HOWTOs & tutorials
Topic: HOWTO: OpenWRT Routers
Replies: 13
Views: 34283

Re: HOWTO: OpenWRT Routers

@FoodMaven

What's your progress so far?
by parityboy
Tue Feb 20, 2018 7:28 pm
Forum: member support & tech assistance
Topic: [Help] Debian 9 OpenVPN Network Manager: Cryptostorm randomly disconnects!
Replies: 5
Views: 99

Re: [Help] Debian 9 OpenVPN Network Manager: Cryptostorm randomly disconnects!

@OP 1 . I might have this wrong but this is what I remember. There was a time when an un-hashed token was rejected for security/correlation reasons. After a review, it was determined that accepting un-hashed tokens was much less of a security risk than it first appeared to be. The server-side authe...
by parityboy
Mon Feb 19, 2018 5:22 pm
Forum: member support & tech assistance
Topic: [Help] Debian 9 OpenVPN Network Manager: Cryptostorm randomly disconnects!
Replies: 5
Views: 99

Re: [Help] Debian 9 OpenVPN Network Manager: Cryptostorm randomly disconnects!

@OP Caught it. Sun Feb 18 11:23:49 2018 us=319856 Initialization Sequence Completed Sun Feb 18 11:25:13 2018 us=486000 [server] Inactivity timeout (--ping-restart), restarting Sun Feb 18 11:25:13 2018 us=486500 TCP/UDP: Closing socket Sun Feb 18 11:25:13 2018 us=486597 SIGUSR1[soft,ping-restart] re...
by parityboy
Sun Feb 18, 2018 11:14 pm
Forum: member support & tech assistance
Topic: [Help] Debian 9 OpenVPN Network Manager: Cryptostorm randomly disconnects!
Replies: 5
Views: 99

Re: [Help] Debian 9 OpenVPN Network Manager: Cryptostorm randomly disconnects!

@OP

Do the logs say something like "inactivity timeout"? Could you post some log output here?
by parityboy
Sun Feb 18, 2018 10:59 pm
Forum: member support & tech assistance
Topic: Cryptostorm, OpenWRT, Dynamic DNS (DDNS), OpenVPN
Replies: 1
Views: 80

Re: Cryptostorm, OpenWRT, Dynamic DNS (DDNS), OpenVPN

@OP The entire point of DNS is to provide a consistent point of contact for a network service - e.g "www.google.com" - regardless of its IP address. Dynamic DNS is exactly that - it dynamically updates the IP address of a given DNS entry when that IP address changes, common with residenti...
by parityboy
Sat Feb 17, 2018 5:14 pm
Forum: guides, HOWTOs & tutorials
Topic: HOWTO: OpenWRT Routers
Replies: 13
Views: 34283

Re: HOWTO: OpenWRT Routers

@FoodMaven

The username is the hashed token, as you correctly surmised. The password can be anything (since the operational model doesn't rely on it to grant access) but it must be something - whether it's a single character or a stream of random characters, it doesn't matter either way.
by parityboy
Thu Feb 15, 2018 12:36 am
Forum: member support & tech assistance
Topic: [CRITICAL] Website not giving SHA512 that passes tokenizer check
Replies: 5
Views: 181

Re: [CRITICAL] Website not giving SHA512 that passes tokenizer check

@df

Yeah it works. My cut & paste from a token PDF included an extra character - a carriage return. Didn't realise until I pasted it into a text editor to check it. :p
by parityboy
Wed Feb 14, 2018 9:12 pm
Forum: independent cryptostorm token resellers, & tokens 101
Topic: New token reseller -> okaruto.space
Replies: 4
Views: 219

Re: New token reseller -> okaruto.space

@OP

OK you're up. Check it out here. :D
by parityboy
Tue Feb 13, 2018 3:14 am
Forum: independent cryptostorm token resellers, & tokens 101
Topic: New token reseller -> okaruto.space
Replies: 4
Views: 219

Re: New token reseller -> okaruto.space

@OP Good to see there's an independent reseller again! :D I took a look at your site and I like what I see: a good selection of crypto coins (any chance of supporting Verge (XVG) ?) and an onion site too (a bit slow that one, but that might be Tor). I would like to place you on the resellers page a...
by parityboy
Tue Feb 13, 2018 3:07 am
Forum: member support & tech assistance
Topic: Another $50 router blown up.
Replies: 2
Views: 96

Re: Another $50 router blown up.

@OP I think it's important for you to realise that many of the guides on this forum come from community members, not from staff. The vast majority of VPN users - regardless of provider - initiate their VPN connection from their PC not from their router, hence the need for software such as Network M...
by parityboy
Mon Feb 12, 2018 5:12 pm
Forum: member support & tech assistance
Topic: [CRITICAL] Website not giving SHA512 that passes tokenizer check
Replies: 5
Views: 181

Re: [CRITICAL] Website not giving SHA512 that passes tokenizer check

@df

I've just tested it and it's still broken. Also, the textual hint in the token field doesn't disappear when you click into it.
by parityboy
Mon Feb 12, 2018 3:51 pm
Forum: member support & tech assistance
Topic: [CRITICAL] Website not giving SHA512 that passes tokenizer check
Replies: 5
Views: 181

Re: [CRITICAL] Website not giving SHA512 that passes tokenizer check

@OP

Confirmed. The hash generator on the site is broken. Marking this one as critical.
by parityboy
Mon Feb 12, 2018 3:34 pm
Forum: general chat, suggestions, industry news
Topic: Come on guys, get your shit together
Replies: 5
Views: 521

Re: Come on guys, get your shit together

@OP

CS is still very much alive. :D You make some good points regarding the forum, hopefully these will be addressed in fairly short order. :)
by parityboy
Sun Feb 11, 2018 8:05 pm
Forum: member support & tech assistance
Topic: IBM's Quad9 DNS
Replies: 2
Views: 181

Re: IBM's Quad9 DNS

@OP I'd use it to look up the exit node I want to connect to. After that, CS' own on-node DNS server takes over anyway. :D EDIT What I wrote above applies to VPN connections originating on a personal computer or mobile device. For routers it's a bit different - I use known CS DNS IPs for my pfSense...
by parityboy
Sat Feb 10, 2018 6:02 am
Forum: guides, HOWTOs & tutorials
Topic: HOWTO: OpenWRT Routers
Replies: 13
Views: 34283

Re: HOWTO: OpenWRT Routers

FoodMaven

I can confirm that Cryptostorm does NOT support IPv6. :)
by parityboy
Wed Feb 07, 2018 7:34 am
Forum: member support & tech assistance
Topic: noob question about widget
Replies: 1
Views: 155

Re: noob question about widget

@OP

The widget should minimise itself once connected. If not, you should be able to minimise it. It will stay connected. :)
by parityboy
Thu Jan 25, 2018 10:09 pm
Forum: member support & tech assistance
Topic: Slow connection after upgrading to widget 3.12
Replies: 9
Views: 779

Re: Slow connection after upgrading to widget 3.12

@Bob

I've made staff aware of this thread. Hopefully they will return here with some feedback relatively soon. :)
by parityboy
Tue Jan 23, 2018 6:13 pm
Forum: member support & tech assistance
Topic: Slow connection after upgrading to widget 3.12
Replies: 9
Views: 779

Re: Slow connection after upgrading to widget 3.12

@Bob For these kinds of tests it's good practice to use the node geographically closest to you. Dusseldorf has a 1Gb/s network port, not sure about Canada West. The fact that the slowdown is happening on both Windows 7 and Windows 8 points to a misconfiguration in the widget - Widget 2.22 not havin...
by parityboy
Tue Jan 23, 2018 10:26 am
Forum: cryptostorm reborn: voodoo networking, stormtokens, PostVPN exotic netsecurity
Topic: Please help me grasp cryptostorm
Replies: 5
Views: 1761

Re: Please help me grasp cryptostorm

@VLMin

Yes, it can. I have it running on pfSense and there are guides for DD-WRT and other router distros in the guides, HOWTOs & tutorials sub-forum.
by parityboy
Tue Jan 23, 2018 3:49 am
Forum: member support & tech assistance
Topic: Slow connection after upgrading to widget 3.12
Replies: 9
Views: 779

Re: Slow connection after upgrading to widget 3.12

@thread

I notice that both of you are running Windows 7. Is there any chance one of you could run Windows 8.x or Windows 10 in a VM (using Virtualbox or Hyper-V) and see if you get the same issue with Widget 3.12?

Cheers. :)
by parityboy
Sat Jan 20, 2018 7:21 pm
Forum: cryptostorm in-depth: announcements, how it works, what it is
Topic: DD-WRT not resolving
Replies: 1
Views: 336

Re: DD-WRT not resolving

@OP

Which DNS IPs are you using?
by parityboy
Tue Jan 09, 2018 11:10 pm
Forum: member support & tech assistance
Topic: Cannot resolve host after connection loss, Android
Replies: 5
Views: 871

Re: Cannot resolve host after connection loss, Android

@nobody

The latest Android configs have been updated with the latest certificate. See my sig. for the GitHub link.
by parityboy
Mon Jan 08, 2018 4:21 am
Forum: member support & tech assistance
Topic: Slow connection after upgrading to widget 3.12
Replies: 9
Views: 779

Re: Slow connection after upgrading to widget 3.12

@OP

Do you have another device you could test the VPN connection on - perhaps a phone or tablet? It would be good to try to eliminate your Windows install as a possible culprit.
by parityboy
Sat Jan 06, 2018 3:47 am
Forum: member support & tech assistance
Topic: Slow connection after upgrading to widget 3.12
Replies: 9
Views: 779

Re: Slow connection after upgrading to widget 3.12

@OP

1. What's the speed of your "naked" link?
2. Which version of Windows are you running?
3. Could you try another exit node which is geographically close to you and report the speed you get?

Many thanks. :)
by parityboy
Thu Jan 04, 2018 8:59 pm
Forum: guides, HOWTOs & tutorials
Topic: HOWTO: Mac/OSX connects via Tunnelblick
Replies: 21
Views: 28589

Re: HOWTO: Mac/OSX connects via Tunnelblick

BlockChay wrote:What if you have not received a token?


Contact support@cryptostorm.is, they will be able to help you. :)
by parityboy
Wed Jan 03, 2018 8:49 pm
Forum: member support & tech assistance
Topic: dd-wrt configuration, can't connect
Replies: 40
Views: 1982

Re: dd-wrt configuration, can't connect

@dexter Since it's carrying the same IP address I doubt it, unless it was artificially restricted, i.e. the server comes with a 1Gb/s network port anyway but it actually connects to a 100Mb/s switch port and the switch port has now been "upgraded" to 1Gb/s. How does your VPN speed compare...
by parityboy
Tue Jan 02, 2018 7:02 am
Forum: member support & tech assistance
Topic: dd-wrt configuration, can't connect
Replies: 40
Views: 1982

Re: dd-wrt configuration, can't connect

@dexter You need a DNS instance that actually knows what to do with .onion TLDs. That means using a Cryptostorm DNS server;unlike the widget (Windows), Tunnelblick (macOS) or NetworkManager(GNU/Linux), router distros such as DD-WRT and pfSense do not allow their DNS settings to be updated by the Op...
by parityboy
Mon Jan 01, 2018 6:03 pm
Forum: member support & tech assistance
Topic: dd-wrt configuration, can't connect
Replies: 40
Views: 1982

Re: dd-wrt configuration, can't connect

@dexter

OK, I think I see the issue. There's two possible steps so let's deal with the first one. When you set up the DNS in DD-WRT, which DNS servers did you set?
by parityboy
Sat Dec 30, 2017 4:12 am
Forum: member support & tech assistance
Topic: widget doesnt connect
Replies: 10
Views: 999

Re: widget doesnt connect

@link8877 I've just installed the latest widget ( 3.12.0.127 ) into Windows 8.1, and it connected correctly first time. I realise Win8.1 isn't Win10...the only thing I can suggest is completely uninstalling the widget and downloading it clean from the CS website again. In the meanwhile, I can look ...
by parityboy
Fri Dec 29, 2017 10:29 pm
Forum: member support & tech assistance
Topic: Slow connection? UK servers
Replies: 5
Views: 517

Re: Slow connection? UK servers

@OP

The network port on the UK server is 100Mb/s as opposed to the newer servers which are 1Gb/s - I'm guessing that's why you're seeing such crappy speeds. Could you run a test against (perhaps) the NL, DE and FR servers and post in the speed test thread (see my sig.) for posterity?

Thanks. :)
by parityboy
Fri Dec 29, 2017 10:24 pm
Forum: member support & tech assistance
Topic: dd-wrt configuration, can't connect
Replies: 40
Views: 1982

Re: dd-wrt configuration, can't connect

@dexter

You don't need to worry about the SOCKS setting, since you're not running Tor router software locally. Setting network.dns.blockDotOnion to false is correct. :) It should work transparently - try connecting to the Hidden Wiki and see how you fare. :)
by parityboy
Wed Dec 27, 2017 3:26 pm
Forum: member support & tech assistance
Topic: dd-wrt configuration, can't connect
Replies: 40
Views: 1982

Re: dd-wrt configuration, can't connect

@dexter

Comment out any line with sndbuf or rcvbuf - they used to be in the Linux config files, but they were removed a while back.
by parityboy
Tue Dec 26, 2017 8:17 pm
Forum: member support & tech assistance
Topic: 443 error
Replies: 4
Views: 438

Re: 443 error

@OP

Could you completely uninstall the widget and reinstall it again from clean?
by parityboy
Tue Dec 26, 2017 8:11 pm
Forum: member support & tech assistance
Topic: Can't connect...
Replies: 11
Views: 721

Re: Can't connect...

@Rob01

The Windows widget will have the CA and relevant config parameters packaged with it. You just have to make sure you are running the latest version of it.
by parityboy
Sun Dec 24, 2017 8:46 pm
Forum: member support & tech assistance
Topic: widget doesnt connect
Replies: 10
Views: 999

Re: widget doesnt connect

@link8877

That sounds like a client-side error, rather than server-side. Can you remove Windows Defender and see if it makes a difference?
by parityboy
Sun Dec 24, 2017 10:02 am
Forum: member support & tech assistance
Topic: widget doesnt connect
Replies: 10
Views: 999

Re: widget doesnt connect

@thread

See here.
by parityboy
Sun Dec 24, 2017 9:59 am
Forum: member support & tech assistance
Topic: Can't connect...
Replies: 11
Views: 721

Re: Can't connect...

I've had the same problem since the update too, and I'm on Linux. Cannot connect to any of the servers, all tries end up with timeouts. All the servers are up, and I've tried several different ones so far. You need to download the updated config files (and possibly the new ca.crt file as well, depe...
by parityboy
Sun Dec 24, 2017 9:44 am
Forum: member support & tech assistance
Topic: dd-wrt configuration, can't connect
Replies: 40
Views: 1982

Re: dd-wrt configuration, can't connect

@dexter The error comes from the incorrect option "Hand Window", which should be "hand-window". It's been edited accordingly.:) Try this for your "additional conf": resolv-retry infinite nobind float sndbuf size 1655368 rcvbuf size 1655368 down-pre allow-pull-fqdn expl...
by parityboy
Thu Dec 14, 2017 6:23 am
Forum: member support & tech assistance
Topic: Debian 9 - Connection fails every way i try :S
Replies: 4
Views: 918

Re: Debian 9 - Connection fails every way i try :S

@OP

I assume you are copy/pasting the hashed token into the shell? Can you confirm that the copy/paste is working correctly? I can't see how the username is null...you could try creating a text file with the username and password on separate, consecutive lines and using that to authenticate with.
by parityboy
Mon Dec 11, 2017 5:19 pm
Forum: member support & tech assistance
Topic: Debian 9 - Connection fails every way i try :S
Replies: 4
Views: 918

Re: Debian 9 - Connection fails every way i try :S

@OP

When you say "run it manually", are you supplying the username and password interactively or from a file? Can you specify the exact command line you are using to run it manually?

Thanks.
by parityboy
Mon Dec 11, 2017 5:15 pm
Forum: member support & tech assistance
Topic: Very low data transfer speeds fix
Replies: 4
Views: 939

Re: Very low data transfer speeds fix

@ipman

UDP is no less secure and a whole lot more efficient. OpenVPN checks each packet for integrity, which is what matters.
by parityboy
Fri Dec 08, 2017 2:40 am
Forum: cryptostorm reborn: voodoo networking, stormtokens, PostVPN exotic netsecurity
Topic: Please help me grasp cryptostorm
Replies: 5
Views: 1761

Re: Please help me grasp cryptostorm

@noname

There have been a few resellers around since launch. The best one was VPN Darknet, but he seems to have taken early retirement. I tried to create a page to list all available token resellers, but there hasn't been much take up.
by parityboy
Sat Dec 02, 2017 8:17 pm
Forum: member support & tech assistance
Topic: Trying to Setup on Fedora 27
Replies: 1
Views: 985

Re: Trying to Setup on Fedora 27

@OP Couple of points: 1) The password cannot be blank. It can be anything, but it must be at least something, even if it's only a single character. I'm surprised you didn't get AUTH_FAILED. 2) The traceroute error is appearing because traceroute is expecting to be able to resolve cryptostorm.is to ...
by parityboy
Thu Nov 30, 2017 4:41 pm
Forum: member support & tech assistance
Topic: DNS error
Replies: 3
Views: 1308

Re: DNS error

@OP

Did you follow the Tunnelblick HOWTO here? Also, there is an iOS guide here.

If you need further help, ask away and I'll try to guide you through. :)
by parityboy
Mon Nov 27, 2017 8:24 pm
Forum: member support & tech assistance
Topic: DNS error
Replies: 3
Views: 1308

Re: DNS error

@OP

On the Mac, which VPN client are you using?
by parityboy
Mon Nov 27, 2017 8:16 pm
Forum: independent cryptostorm token resellers, & tokens 101
Topic: buy tokens in bulk and spread use?
Replies: 1
Views: 867

Re: buy tokens in bulk and spread use?

@OP

Apart from the bundles for the 1 month tokens, tokens would have to be bought in separate transactions. However, you could probably contact support and arrange something. :)
by parityboy
Mon Nov 27, 2017 8:13 pm
Forum: guides, HOWTOs & tutorials
Topic: openwrt and cryptostorm ?
Replies: 1
Views: 440

Re: openwrt and cryptostorm ?

@OP

Is this of no help to you?
by parityboy
Sat Oct 28, 2017 7:45 pm
Forum: member support & tech assistance
Topic: s.youtube.com resolution failure
Replies: 3
Views: 2768

Re: s.youtube.com resolution failure

Server: 127.0.0.1 Address: 127.0.0.1#53 Non-authoritative answer: *** Can't find s.youtube.com: No answer Server: 127.0.0.1 Address: 127.0.0.1#53 Non-authoritative answer: *** Can't find xtube.com: No answer While connected to Dusseldorf.
by parityboy
Fri Oct 27, 2017 4:56 pm
Forum: member support & tech assistance
Topic: InternetCube and CryptoStorm
Replies: 3
Views: 1311

Re: InternetCube and CryptoStorm

@OP The IPV6 does not apply, the IPV4 will be the IP address of the node you want to connect to, which you can get from the configuration files here . Can the InternetCube accept a domain name (like linux-balancer.cryptostorm.net )? If not, you will need to to a lookup on the domain name given in t...
by parityboy
Thu Oct 26, 2017 1:19 am
Forum: member support & tech assistance
Topic: InternetCube and CryptoStorm
Replies: 3
Views: 1311

Re: InternetCube and CryptoStorm

@OP

The info you need is held at the GitHub link in my sig. (second link).
by parityboy
Tue Oct 24, 2017 5:42 pm
Forum: general chat, suggestions, industry news
Topic: Split Tunneling
Replies: 27
Views: 21158

Re: Split Tunneling

@marzametal Haven't seen you around in a little while, how's things? :D Yeah, I've got a bit going on behind the scenes, which is keeping me away from the PC. Overall, still alive (I think)! How's your side treating you? Hoping the CS Router will be out soon. Bit apprehensive about this :) Yeah, al...
by parityboy
Fri Oct 20, 2017 4:44 pm
Forum: general chat, suggestions, industry news
Topic: Split Tunneling
Replies: 27
Views: 21158

Re: Split Tunneling

@marzametal

Haven't seen you around in a little while, how's things? :D
by parityboy
Sun Oct 15, 2017 5:52 pm
Forum: member support & tech assistance
Topic: authentication failed...
Replies: 6
Views: 2749

Re: authentication failed...

Just joined and received my token identification. Comes up authorisation failed. Go to check and it tells me i have an invalid token?? What now/ Make sure you have entered the token into the token checker without any spaces or odd characters. If it still fails the token check, send the token to sup...
by parityboy
Sat Oct 14, 2017 9:32 pm
Forum: crypto, VPN & security news
Topic: PureVPN keeping logs
Replies: 4
Views: 1776

Re: PureVPN keeping logs

https://www.goldenfrog.com/blog/purevpn-no-log-claims-false amazing misdirection. THEY SOUND AND OPERATE LIKE PROTONMAIL OMFG xD So exactly how was the FBI (working with PureVPN) able to ascertain these details? The answer is simple – PureVPN logs, and their logs tell a story. The logs revealed how...
by parityboy
Fri Oct 13, 2017 4:22 pm
Forum: member support & tech assistance
Topic: Network Token Authentication failed in widget
Replies: 1
Views: 1643

Re: Network Token Authentication failed in widget

@OP

Did the token checker say anything regarding sessions? Also, which exit node were you trying to connect to? There is an issue with the NL server (failed hard disk) which is causing AUTH_FAILED on valid tokens.
by parityboy
Tue Oct 10, 2017 9:35 pm
Forum: member support & tech assistance
Topic: Best firewall configuration for Cryptostorm+ASUSWRT-Merlin
Replies: 1
Views: 1408

Re: Best firewall configuration for Cryptostorm+ASUSWRT-Merlin

@OP I can't give you an exact config because I don't run a Merlin-based router. However, here's a snippet of what I do with my Linux-based VMs. *filter # DROP all traffic as a default policy :FORWARD DROP [0:0] :INPUT DROP [0:0] :OUTPUT DROP [0:0] # Accept traffic from localhost -A INPUT -s 127.0.0...
by parityboy
Tue Oct 10, 2017 9:20 pm
Forum: crypto, VPN & security news
Topic: [The Register] VPN logs helped unmask alleged 'net stalker, say feds
Replies: 0
Views: 999

[The Register] VPN logs helped unmask alleged 'net stalker, say feds

“Further, records from PureVPN show that the same email accounts – Lin's Gmail account and the teleprtfx Gmail account – were accessed from the same WANSecurity IP address,” the document stated. And that's where the surprise came in – at least for those who believed a VPN is a complete protection: ...
by parityboy
Wed Oct 04, 2017 7:49 pm
Forum: member support & tech assistance
Topic: authentication failed...
Replies: 6
Views: 2749

Re: authentication failed...

@Jan

I have had the same issue with the NL server, so I think the issue is contained to that node.
by parityboy
Wed Sep 20, 2017 10:23 pm
Forum: member support & tech assistance
Topic: authentication failed...
Replies: 6
Views: 2749

Re: authentication failed...

@OP

So to confirm: does the token checker say anything about sessions?
by parityboy
Tue Sep 19, 2017 5:42 pm
Forum: general chat, suggestions, industry news
Topic: [Request] Add QR Code To Token Delivery
Replies: 5
Views: 4255

Re: [Request] Add QR Code To Token Delivery

@df It would be good enough to deliver the QR code in-browser in the same page where the token is delivered currently . This also gives CS the opportunity to pre-emptively hash the token and generate the QR code from that. Once it's imported into the phone, it's then up to the user to apply SHA512 ...
by parityboy
Tue Sep 19, 2017 5:33 pm
Forum: member support & tech assistance
Topic: Settings for OpenVPN in ChromeOS
Replies: 1
Views: 1750

Re: Settings for OpenVPN in ChromeOS

@OP 1. If you're not too fussed about which server to connect to, use linux-balancer.cryptostorm.net . Other servers can be found here - the naming convention of the configuration files follows the host name of the respective exit node, so out of "cstorm_linux-latvia_udp.ovpn", the host n...
by parityboy
Sat Sep 16, 2017 6:52 pm
Forum: member support & tech assistance
Topic: help me!!!!
Replies: 1
Views: 1676

Re: help me!!!!

@OP You can install something like pfSense on that Pentium system and set up your Cryptostorm connection on that. One NIC will connect to a switch that all of the other devices will connect to (this will be your LAN connection), the other NIC will go to your Internet router or modem (this will be y...
by parityboy
Fri Sep 01, 2017 8:52 pm
Forum: general chat, suggestions, industry news
Topic: [Suggestion] Support WireGuard
Replies: 6
Views: 3762

Re: [Suggestion] Support WireGuard

WireGuard is a next generation VPN that is experimenting with post-quantum crypto. Mullvad already rolled it out and it's working great. Please consider supporting! I know that staff are already looking at it, especially in relation to how its public key authentication fits within the Cryptostorm m...
by parityboy
Fri Sep 01, 2017 8:50 pm
Forum: cryptostorm in-depth: announcements, how it works, what it is
Topic: How to fix DNS leak on linux ?
Replies: 3
Views: 3232

Re: How to fix DNS leak on linux ?

Nice information. Compared to messing around with up/down scripts and openvpn settings, this is a more bulletproof method. Would it be possible to add a "Rules.v4" to the Linux section on Github populated (and updated) with all the current CS exit node IP's? Maybe add a small readme with ...
by parityboy
Mon Aug 21, 2017 12:13 am
Forum: member support & tech assistance
Topic: newbie clarification help
Replies: 5
Views: 3042

Re: newbie clarification help

@OP Thank you for the additional info. I don't use Gentoo (used to, years ago) but the basic rules should apply. I'll post an excerpt of my own firewall rules to help you along. On Ubuntu there's a package called iptables-persistent which uses scripts to load and save firewall rules, including at b...
by parityboy
Sat Aug 19, 2017 7:12 am
Forum: cryptostorm in-depth: announcements, how it works, what it is
Topic: um
Replies: 1
Views: 1774

Re: um

@OP

Can you be more specific?
by parityboy
Sat Aug 19, 2017 7:09 am
Forum: member support & tech assistance
Topic: newbie clarification help
Replies: 5
Views: 3042

Re: newbie clarification help

@OP

So just to be clear, your DD-WRT is NOT running an OpenVPN client? You have two simultaneous connections: one Windows, one Gentoo Linux? Is this correct?

Oh by the way - "than" is comparative, "then" is temporal. Like this. :)
by parityboy
Fri Aug 18, 2017 7:51 pm
Forum: member support & tech assistance
Topic: newbie clarification help
Replies: 5
Views: 3042

Re: newbie clarification help

@OP 1. Yes, it's 4 simultaneous connections. Once 4 simultaneous connections are established, a 5th will fail to authenticate. 2. For clarification: the connection between your computer is tunnelled (and encrypted) so that your ISP can only see VPN traffic going between your router and the VPN exit...
by parityboy
Sun Aug 13, 2017 6:16 pm
Forum: member support & tech assistance
Topic: hello world, newbie questions
Replies: 2
Views: 2612

Re: hello world, newbie questions

@OP 1. Yes, depending on your router and the software it runs. 2. Yes, you would use port forwarding on your router so that you can contact your server from the Internet. 3a. Yes 3b. You would use WiFi for them and you wouldn't need to start the VPN on them. They would be protected by the VPN tunne...
by parityboy
Mon Aug 07, 2017 8:52 pm
Forum: cryptostorm in-depth: announcements, how it works, what it is
Topic: How to fix DNS leak on linux ?
Replies: 3
Views: 3232

Re: How to fix DNS leak on linux ?

@OP Try this. sudo apt-get install iptables-persistent Then edit /etc/iptables/rules.v6 to look like this: *filter :INPUT DROP [0:0] :FORWARD DROP [0:0] :OUTPUT DROP [0:0] COMMIT Now edit /etc/iptables/rules.v4. The idea is to permit traffic over eth0 to the exit nodes, but everything else goes ove...
by parityboy
Mon Aug 07, 2017 1:50 am
Forum: member support & tech assistance
Topic: Synology NAS DSM Connection
Replies: 13
Views: 10543

Re: Synology NAS DSM Connection

@poupee

Click on the token checker link and then in the input box paste in your token. It will tell you if the token is valid. :)
by parityboy
Thu Aug 03, 2017 5:41 pm
Forum: member support & tech assistance
Topic: Synology NAS DSM Connection
Replies: 13
Views: 10543

Re: Synology NAS DSM Connection

@poupee Does "authorisation required" come up immediately or after it tries to connect? Can you post any logs? If after, it could be that it is receiving AUTH_FAILED from the exit node. If that's the case, check your token at the token checker in my sig. It could be that either a) the tok...
by parityboy
Thu Aug 03, 2017 3:51 am
Forum: member support & tech assistance
Topic: When i'm connected to the VPN are my LAN services exposed?
Replies: 1
Views: 1533

Re: When i'm connected to the VPN are my LAN services exposed?

@OP

The way the CS network is set up, customers are already firewalled off from each other. However, it doesn't hurt to use iptables wherever your VPN connection is initiated from. You should be using it anyway as a "kill switch" if the VPN connection drops.

Go to advanced search

Nothing to display.

Login