Ξ welcome to cryptostorm's member forums ~ you don't have to be a cryptostorm member to post here Ξ
Ξ any OpenVPN configs found on the forum are likely outdated. For the latest, visit here or GitHub Ξ
Ξ If you're looking for tutorials/guides, check out the new https://cryptostorm.is/#section6 Ξ

How I stopped Leaking IP Addresses and Learned to Love CryptoStorm

Looking for assistance with a cryptostorm connection issue? Post here & we'll help out. Also: if you're not sure where to post, do so here & we'll move things around as needed. Also: for quickest support, email our oddly calm & easygoing support reps at support@cryptostorm.is :)

Topic Author
FoodMaven
Posts: 39
Joined: Thu Jun 01, 2017 2:22 am

How I stopped Leaking IP Addresses and Learned to Love CryptoStorm

Postby FoodMaven » Sat Mar 24, 2018 9:37 pm

Imagine you know literally nothing about networking, VPN, Infosec. Newer than noob. That's me. After 2 weeks of 4 to 6 hours daily trying to get my VPN up and running properly I have success. Four or five times I had to re-flash my router before I understood enough to not damage it. I am using LEDE 17.04.x firmware and LuCI (gui). I've had help from a half a dozen people directly. Thanks to all of them. I have had help from two dozen others whose posts I've read. To those who have gone before me, I would not have this working, but for their struggles. The information on how to VPN on a router is never well documented, in just one place on the 'net. Good Luck to those finding these words.

I run CS over a wifi access-point/router. The post at How-To OpenWRT, this Forum is most helpful, but two or three items are missing there.

What I did worked for me. YMMV.

The most important is to put the exit node of choice's IP address in /etc/config/dnscrypt-proxy. Until that is done, you will leak IP addresses like a seive. For example: the line

option resolver '109.71.42.228:443'

must mate to the file in /etc/openvpn, for example:

cstorm_linux-lisbon_udp.ovpn

That is, get the DNS numbers from CS' Github page. In the left-most column is the city or state and in the middle of that page (long scrolling, my screen) is the string of numbers to copy and paste into /etc/config/dnscrypt-proxy.

The next part in importance is to use opkg install ip-full immediately after setting the password. I know this is written backwards from the above paragraph, so read twice, config once.

Third is to set the NTP as most consumer grade router/Wifi access points don't have a real time clock and/or battery backup. I'll close this post with the URLs I used to accomplish what has been for me the single most difficult work with a computer evah! And my first computer was a Commodore 64.

Setting NTP info from:
https://www.loganmarchione.com/2015/08/ ... #Setup_NTP

Setting up OpenVPN for a consumer grade router:
https://www.robertkehoe.com/2015/08/set ... g-openwrt/

Cryptostorm Forum Post on Router/Wifi How-To:
viewtopic.php?f=37&t=4480

Cryptostorm's DNS numbers:
https://github.com/cryptostorm/cstorm_d ... olvers.csv

Cryptostorm's test bed page:
https://www.cryptostorm.is/map



Return to “member support & tech assistance”

Who is online

Users browsing this forum: No registered users and 19 guests

Login