Ξ welcome to cryptostorm's member forums ~ you don't have to be a cryptostorm member to post here Ξ
Ξ any OpenVPN configs found on the forum are likely outdated. For the latest, visit here or GitHub Ξ
Ξ If you're looking for tutorials/guides, check out the new https://cryptostorm.is/#section6 Ξ

Search found 1214 matches

by parityboy
Sun Jul 07, 2019 1:11 am
Forum: crypto, VPN & security news
Topic: [VPNPro] Hidden VPN owners unveiled: 97 VPN products run by just 23 companies
Replies: 0
Views: 342

[VPNPro] Hidden VPN owners unveiled: 97 VPN products run by just 23 companies

On the surface, it may seem that the VPN market is teeming with various companies competing for a piece of the growing consumer VPN pie. However, when we began to look further into the VPNs and the companies that own them, we noticed something interesting: a lot of these products are owned by the s...
by parityboy
Sun Jul 07, 2019 1:07 am
Forum: general chat, suggestions, industry news
Topic: OpenWRT + VPN (openvpn) + doh (dnscrypt-proxy)
Replies: 2
Views: 382

Re: OpenWRT + VPN (openvpn) + doh (dnscrypt-proxy)

@OP

It's always useful to run a VPN on a router, since it saves having to run a VPN client on every Internet-accessing device. DNSCrypt is the cherry on top if you can get it working. :)
by parityboy
Sun Jul 07, 2019 1:04 am
Forum: member support & tech assistance
Topic: internal DHCP ip clash only on Dusseldorf UDP
Replies: 2
Views: 352

Re: internal DHCP ip clash only on Dusseldorf UDP

@OP

Interesting...do you not use the usual 192.168.x.x. addressing scheme on your LAN, or is this on a mobile Windows device?
by parityboy
Sun Jul 07, 2019 1:01 am
Forum: member support & tech assistance
Topic: VirtualBox Kubuntu VM not allowing LAN access with CS
Replies: 4
Views: 281

Re: VirtualBox Kubuntu VM not allowing LAN access with CS

MOQ888 wrote:
Tue Jul 02, 2019 3:09 pm
DOH ... I switched it from NAT to Bridged and of course it works perfectly. Tks PB!
yw. :D
by parityboy
Mon Jun 24, 2019 5:20 pm
Forum: member support & tech assistance
Topic: IPLeak.net broken?
Replies: 16
Views: 2445

Re: IPLeak.net broken?

@df

Yeah, thanks for that. I think that for now 'll just set the 10.x.x.x DNS server address on the hosts I need it for. It works and is a simple fix. :)
by parityboy
Mon Jun 24, 2019 5:15 pm
Forum: member support & tech assistance
Topic: VirtualBox Kubuntu VM not allowing LAN access with CS
Replies: 4
Views: 281

Re: VirtualBox Kubuntu VM not allowing LAN access with CS

@OP

In the VM config, is the LAN interface NAT or bridged?
by parityboy
Thu May 23, 2019 6:23 am
Forum: member support & tech assistance
Topic: IPLeak.net broken?
Replies: 16
Views: 2445

Re: IPLeak.net broken?

@parityboy ... As for the DNS leak test failing, I can only see that happening on a host behind the router, and only if the host is set to use DHCP and a DNS server running on the router (which would be connected to CS, and maybe set to use the DNS pushed by the VPN ). That's the one thing that pfS...
by parityboy
Mon Apr 29, 2019 2:30 pm
Forum: crypto, VPN & security news
Topic: [The Register] There's NordVPN odd about this, right? Infosec types concerned over strange app traffic
Replies: 0
Views: 1576

[The Register] There's NordVPN odd about this, right? Infosec types concerned over strange app traffic

Weird things are afoot with NordVPN's app and the traffic it generates - Reg readers have spotted it contacting strange domains in the same way compromised machines talk to botnets' command-and-control servers. Although NordVPN has told us this is expected behaviour by the app and is intended as a ...
by parityboy
Sun Apr 28, 2019 4:42 pm
Forum: member support & tech assistance
Topic: IPLeak.net broken?
Replies: 16
Views: 2445

Re: IPLeak.net broken?

@df Apart from the usual SNAT/MASQ stuff which is needed anyway, the only thing outstanding I have in pfSense is a port forward rule to support a private tracker and that only applies to a single VM guest on a host-only network of its own. Another thing I noticed is that I can't get pfSense to reso...
by parityboy
Sun Apr 28, 2019 1:45 am
Forum: member support & tech assistance
Topic: IPLeak.net broken?
Replies: 16
Views: 2445

Re: IPLeak.net broken?

@df

I get 88.202.180.213, which is one of the England exit node IPs.
by parityboy
Sun Apr 28, 2019 12:24 am
Forum: member support & tech assistance
Topic: IPLeak.net broken?
Replies: 16
Views: 2445

Re: IPLeak.net broken?

@df
Screenshot_20190427_202245.png

Code: Select all

whoami.cryptostorm.is has address 88.202.180.213
Those are exit node IPs. : ) They are what shows up on https://cryptostorm.is/test, depending on the exit node being used.
by parityboy
Fri Apr 26, 2019 9:51 pm
Forum: member support & tech assistance
Topic: IPLeak.net broken?
Replies: 16
Views: 2445

Re: IPLeak.net broken?

@df

I just tried the CS DNS Leak Test page. The IPs it listed are actually the IPs of the exit nodes I'm connected to, rather than the DNS servers I'm using, hence it lists them in red as "not cryptostorm DNS". I've configured pfSense to use 82.163.72.123 and 128.127.104.108 as DNS servers.
by parityboy
Mon Mar 11, 2019 7:36 pm
Forum: member support & tech assistance
Topic: Connecting through Cryptostorm in China
Replies: 1
Views: 1382

Re: Connecting through Cryptostorm in China

@OP As far as I am aware, the Great Firewall will (at least try to) block OpenVPN at the protocol level. The newer CS configs employ TLS to encrypt the OpenVPN handshake which should defeat and kind of Deep Packet Inspection. However Cryptostorm IPs are public, so blocking them is not exactly diffi...
by parityboy
Mon Mar 11, 2019 7:33 pm
Forum: member support & tech assistance
Topic: NBN (National Broadband Network) in Australia
Replies: 2
Views: 1462

Re: NBN (National Broadband Network) in Australia

@marza

Unless NBN goes out of its way to block port 443 or the OpenVPN protocol, it should no different to how it is now in terms of setup and operation.
by parityboy
Mon Jan 14, 2019 3:24 pm
Forum: crypto, VPN & security news
Topic: [BleepingComputer] VORACLE Attack Can Recover HTTP Data From VPN Connections
Replies: 5
Views: 14849

Re: [BleepingComputer] VORACLE Attack Can Recover HTTP Data From VPN Connections

@df

Really? All of the security-related posts here on the form have all pointed to compression being disabled (at least according to PJ and the earlier configs).
by parityboy
Fri Dec 07, 2018 5:15 pm
Forum: general chat, suggestions, industry news
Topic: wrong repository link in tutorial
Replies: 3
Views: 5674

Re: wrong repository link in tutorial

@OP Try this: sudo -s wget -O - https://swupdate.openvpn.net/repos/repo-public.gpg|apt-key add - echo "deb http://build.openvpn.net/debian/openvpn/stable bionic main" > /etc/apt/sources.list.d/openvpn-aptrepo.list apt-get update && apt-get install openvpn exit Linux Mint is based on Ubuntu and the ...
by parityboy
Thu Nov 01, 2018 11:43 pm
Forum: member support & tech assistance
Topic: Probs with new configs in Ubuntu
Replies: 28
Views: 17888

Re: Probs with new configs in Ubuntu

MOQ888 wrote:kubuntu up and running, CS working well - HOORAY!
:thumbup: :thumbup: :D
by parityboy
Thu Nov 01, 2018 11:42 pm
Forum: member support & tech assistance
Topic: [VyOS] VyOS Complains That ca.crt Is Invalid
Replies: 9
Views: 11173

Re: [VyOS] VyOS Complains That ca.crt Is Invalid

@df

As a router, VyOS is actually OK. As a security device, clearly not so much so I would never use it as an edge device (although some people put their firewalls behind their edge-located routers).
by parityboy
Tue Oct 30, 2018 12:47 pm
Forum: member support & tech assistance
Topic: [VyOS] VyOS Complains That ca.crt Is Invalid
Replies: 9
Views: 11173

Re: [VyOS] VyOS Complains That ca.crt Is Invalid

@df I blew the VyOS instance away (I'll likely get a mini PC from AliExpress or Banggood and stick pfSense on it) but here's the ca.crt I was using. -----BEGIN CERTIFICATE----- MIIFIDCCBAigAwIBAgIJAKekpGXxXvhbMA0GCSqGSIb3DQEBCwUAMIG6MQswCQYD VQQGEwJDQTELMAkGA1UECBMCUUMxETAPBgNVBAcTCE1vbnRyZWFsMTYwN...
by parityboy
Tue Oct 30, 2018 12:41 pm
Forum: member support & tech assistance
Topic: Probs with new configs in Ubuntu
Replies: 28
Views: 17888

Re: Probs with new configs in Ubuntu

@MOQ888

Hmmm...I have KDE Neon badgering me to update it to its new 18.04 LTS base, but I'm now wondering whether it's worth it. Having said that, my VPN is handled by a router so I wouldn't need Network Manager for VPN duty. :)
by parityboy
Sun Oct 28, 2018 7:21 pm
Forum: member support & tech assistance
Topic: Probs with new configs in Ubuntu
Replies: 28
Views: 17888

Re: Probs with new configs in Ubuntu

@MOQ888

Glad you got working. :D Now we just need Network Manager to support the ECC instances. :)
by parityboy
Sat Oct 27, 2018 3:31 pm
Forum: member support & tech assistance
Topic: [Exits] England Node Not Passing Any Traffic
Replies: 16
Views: 14194

Re: [Exits] England Node Not Passing Any Traffic

@df

I agree. :P On that note, what happened to the Spain node? I see the legacy one has been consolidated onto the Portugal node and the newer configs (including RSA) have no Spain node at all.
by parityboy
Sat Oct 27, 2018 8:15 am
Forum: member support & tech assistance
Topic: [Exits] England Node Not Passing Any Traffic
Replies: 16
Views: 14194

Re: [Exits] England Node Not Passing Any Traffic

@df

Sounds like something might be broken in the kernel running on that machine, or maybe sysctl needs a tweak? No reason why UDP should have issues when TCP works fine and the Windows-optimised instances also work fine.
by parityboy
Sat Oct 27, 2018 7:58 am
Forum: member support & tech assistance
Topic: [SOLVED] Port Forwarding On Legacy Nodes: Broken?
Replies: 6
Views: 5929

[SOLVED] Re: Port Forwarding On Legacy Nodes: Broken?

@df Found it. :D In pfSense on the Port Forwarding page, simply creating the rule isn't enough. There's a field near the bottom of the page which says "Filter rule association". The default selection for this is "None" (no doubt for security reasons). To make the rule active, one needs to select "P...
by parityboy
Sat Oct 27, 2018 6:05 am
Forum: member support & tech assistance
Topic: [SOLVED] Port Forwarding On Legacy Nodes: Broken?
Replies: 6
Views: 5929

[SOLVED] Re: Port Forwarding On Legacy Nodes: Broken?

@df Yep, I have a NAT hole punched in my pfSense firewall for the VPN client address (10.66.216.32) which is in turn forwarded to the VM running my BitTorrent client (which is listening on 45886). Weird - it definitely worked before the upgrade (I checked it with telnet from an outside network). I'...
by parityboy
Fri Oct 26, 2018 4:23 pm
Forum: member support & tech assistance
Topic: [SOLVED] Port Forwarding On Legacy Nodes: Broken?
Replies: 6
Views: 5929

[SOLVED] Re: Port Forwarding On Legacy Nodes: Broken?

@df

I'm currently on 128.127.104.111, port number 45886. Try telneting to it and see if you get a response.
by parityboy
Thu Oct 25, 2018 11:39 pm
Forum: member support & tech assistance
Topic: [SOLVED] Port Forwarding On Legacy Nodes: Broken?
Replies: 6
Views: 5929

[SOLVED] Port Forwarding On Legacy Nodes: Broken?

I've just realised that the port forwarding feature on the legacy RSA nodes - <os>-<location>.cryptostorm.net - doesn't seem to be functional. The setup page at http://10.31.33.7/fwd is there and appears to set the mapping (even complaining when you try to set the mapping twice) but telnet ing to th...
by parityboy
Wed Oct 24, 2018 6:04 pm
Forum: member support & tech assistance
Topic: Probs with new configs in Ubuntu
Replies: 28
Views: 17888

Re: Probs with new configs in Ubuntu

@OP

I'm going to have to dig into this. I'm running KDE Neon (now based on 18.04 LTS but mine is still running a 16.04 LTS base) and I suspect it has a newer Network Manager that accommodates this. Mine looks like this.

Image
by parityboy
Mon Oct 22, 2018 5:23 pm
Forum: member support & tech assistance
Topic: Probs with new configs in Ubuntu
Replies: 28
Views: 17888

Re: Probs with new configs in Ubuntu

@OP Oct 22 21:40:28 e8100i7 NetworkManager[1163]: nm-openvpn-Message: openvpn[7095]: send SIGTERM Oct 22 21:40:28 e8100i7 nm-openvpn[7095]: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity) Oct 22 21:40:28 e8100i7 nm-openvpn[7095]: TLS Error: TLS hand...
by parityboy
Sun Oct 21, 2018 11:05 pm
Forum: member support & tech assistance
Topic: Probs with new configs in Ubuntu
Replies: 28
Views: 17888

Re: Probs with new configs in Ubuntu

@OP

Can you collect and post some logs so we can see what Network Manager is doing? I suspect it's related to TLS handshaking, but I'd like to be sure. :)
by parityboy
Sat Oct 20, 2018 6:56 am
Forum: member support & tech assistance
Topic: block outside dns
Replies: 5
Views: 8040

Re: block outside dns

@marza

I can't really help you on the Windows side of things, but would you ever consider delegating VPN duty to a router? That way you wouldn't have to deal with all the weirdness. :)
by parityboy
Thu Oct 18, 2018 4:46 pm
Forum: member support & tech assistance
Topic: [Exits] England Node Not Passing Any Traffic
Replies: 16
Views: 14194

Re: [Exits] England Node Not Passing Any Traffic

@blurb Yeah, Wireguard looks really nice. Needs more router support and therefore greater adoption, but it needs auditing before anything else. OpenVPN is complex and annoying, but on the other hand it was the first decent VPN that wasn't closed code (i.e. enterprise and therefore expensive and/or ...
by parityboy
Thu Oct 18, 2018 5:47 am
Forum: member support & tech assistance
Topic: [Exits] England Node Not Passing Any Traffic
Replies: 16
Views: 14194

Re: [Exits] England Node Not Passing Any Traffic

@blurb,@df OK, I've tested all of the legacy EU nodes ( linux-<location>.cryptostorm.net ). The following nodes connect and successfully pass traffic: Denmark Dusseldorf Frankfurt Finland Latvia Netherlands Paris Poland Romania Rome Sweden Switzerland The following nodes are broken and refuse to pa...
by parityboy
Thu Oct 18, 2018 3:05 am
Forum: member support & tech assistance
Topic: [Exits] England Node Not Passing Any Traffic
Replies: 16
Views: 14194

Re: [Exits] England Node Not Passing Any Traffic

@blurb Well if I remember rightly, you've got it running on a Tomato-based router (which is based on Linux). I've experienced this issue on both Linux Mint 18.3 and pfSense 2.3.4 (which is based on FreeBSD). Also yes, all of the nodes are physical machines running multiple instances of OpenVPN, eac...
by parityboy
Wed Oct 17, 2018 7:23 pm
Forum: member support & tech assistance
Topic: [Exits] England Node Not Passing Any Traffic
Replies: 16
Views: 14194

Re: [Exits] England Node Not Passing Any Traffic

@blurb This is what I'm getting in my pfSense log: Oct 17 14:18:27 openvpn 22625 Bad LZO decompression header byte: 0 Oct 17 14:18:47 openvpn 22625 Bad LZO decompression header byte: 0 Oct 17 14:19:07 openvpn 22625 Bad LZO decompression header byte: 0 Oct 17 14:19:07 openvpn 22625 [cryptostorm serv...
by parityboy
Wed Oct 17, 2018 7:00 pm
Forum: member support & tech assistance
Topic: Best Node for Australian Members
Replies: 2
Views: 6569

Re: Best Node for Australian Members

@OP Going by this map , I'd say US West coast, based on the links. Failing that, I would suggest the most eastern part of Europe (Poland, Romania); bear in mind that overland links are not shown. Check this link for a list of the node locations. UPDATE I've just realised that we now have a Hong Kon...
by parityboy
Wed Oct 17, 2018 6:48 pm
Forum: cryptostorm in-depth: announcements, how it works, what it is
Topic: The CryptoStorm Speed Test Thread
Replies: 77
Views: 162355

Re: The CryptoStorm Speed Test Thread

@blurb Many thanks for sharing this. :D Ironically, while the newer ECC cryptographic algorithms are much more efficient than the older RSA - requiring much less CPU power for the same level of cryptographic strength - there's a good chance that the older routers (which would actually benefit from ...
by parityboy
Wed Oct 17, 2018 6:37 pm
Forum: general chat, suggestions, industry news
Topic: Token Hashing - OpenVPN user input
Replies: 24
Views: 47357

Re: Token Hashing - OpenVPN user input

@cryptomon It could be then that either the parsing code for the HTML page or the database which actually stores the username/password credentials have not been updated to reflect the update to the HTML page. Having said that, it might be worth looking to see if the router actually stores the crede...
by parityboy
Wed Oct 17, 2018 2:17 am
Forum: member support & tech assistance
Topic: [Exits] England Node Not Passing Any Traffic
Replies: 16
Views: 14194

Re: [Exits] England Node Not Passing Any Traffic

@blurb

Yeah, I confirmed it directly from the desktop with Network Manager. My OP concerned pfSense, but the effect (unfortunately) is the same.
by parityboy
Tue Oct 16, 2018 9:30 pm
Forum: general chat, suggestions, industry news
Topic: Token Hashing - OpenVPN user input
Replies: 24
Views: 47357

Re: Token Hashing - OpenVPN user input

@cryptomon

Could you try inspecting the HTML in something like Firefox's debugger? It may give you the ability to alter the HTML (i.e. remove the restriction on the input field) temporarily just so that you can input the hashed token.
by parityboy
Mon Oct 15, 2018 3:35 pm
Forum: member support & tech assistance
Topic: [Exits] England Node Not Passing Any Traffic
Replies: 16
Views: 14194

[Exits] England Node Not Passing Any Traffic

Has anyone else noticed this? I have the NL node configured identically and it works fine, but the England node (5.101.149.7) refuses to pass any traffic.
by parityboy
Sat Oct 13, 2018 7:03 am
Forum: member support & tech assistance
Topic: New configuration files - my setup issues
Replies: 3
Views: 7013

Re: New configuration files - my setup issues

@OP

I'd guess that the IP addresses of the new ecc/ed448/ed25519 instances are not yet in the check databases.
by parityboy
Tue Oct 09, 2018 4:38 pm
Forum: guides, HOWTOs & tutorials
Topic: ASUS router stock firmware OpenVPN working.
Replies: 7
Views: 18520

Re: ASUS router stock firmware OpenVPN working.

Hi, I am running Asuswrt-Merlin 384.7 and I am getting the following in my log: httpd: nvram_check fail: nvram vpn_client_username over length (128 > 64) ovpn-client1[8736]: ERROR: username from Auth authfile 'up' is empty ovpn-client1[8736]: Exiting due to fatal error Any ideas on what I need to d...
by parityboy
Tue Oct 02, 2018 7:11 am
Forum: cryptofree: no-cost cryptostorm network access
Topic: Speeds
Replies: 12
Views: 25655

Re: Speeds

@blurb

That sounds good. :)

Is your connection cable, fiber or xDSL (including hybrid fiber)? Also, would you be kind enough to document your experience in the Speed Test thread? :D
by parityboy
Mon Oct 01, 2018 10:41 pm
Forum: member support & tech assistance
Topic: [VyOS] VyOS Complains That ca.crt Is Invalid
Replies: 9
Views: 11173

Re: [VyOS] VyOS Complains That ca.crt Is Invalid

@df OK, so I tried using NordVPN's certificate (extracted from one of their OpenVPN configuration files) and VyOS accepted it. For posterity, here it is. -----BEGIN CERTIFICATE----- MIIFCjCCAvKgAwIBAgIBATANBgkqhkiG9w0BAQ0FADA5MQswCQYDVQQGEwJQQTEQ MA4GA1UEChMHTm9yZFZQTjEYMBYGA1UEAxMPTm9yZFZQTiBSb290...
by parityboy
Mon Oct 01, 2018 10:11 pm
Forum: member support & tech assistance
Topic: [VyOS] VyOS Complains That ca.crt Is Invalid
Replies: 9
Views: 11173

Re: [VyOS] VyOS Complains That ca.crt Is Invalid

@df I checked using the method you described and yes, it's the RSA cert (1866 bytes long). As for the other certs and keys, seemingly the VyOS scripts expect them regardless of whether they are used or not. Either way, even before I created them, VyOS was whining that Cryptostorm's ca.crt was not v...
by parityboy
Fri Sep 28, 2018 10:52 pm
Forum: member support & tech assistance
Topic: [VyOS] VyOS Complains That ca.crt Is Invalid
Replies: 9
Views: 11173

Re: [VyOS] VyOS Complains That ca.crt Is Invalid

@thread

OK, quick update. I upgraded VyOS to 1.2.0, which runs OpenVPN 2.3.4 It will accept the CA cert for PIA, but NOT the one for Cryptostorm.

I have no idea why. df if you (or anyone else) can offer any ideas, it would be greatly appreciated. :)
by parityboy
Fri Sep 28, 2018 9:09 pm
Forum: member support & tech assistance
Topic: [VyOS] VyOS Complains That ca.crt Is Invalid
Replies: 9
Views: 11173

Re: [VyOS] VyOS Complains That ca.crt Is Invalid

OK, I've found two things: 1) PIA's ca.2048.crt file works perfectly well, while Cryptotsorm's ca.crt does not. 2) VyOS 1.1.8 actually uses OpenVPN 2.1.x, which doesn't connect even to PIA's network so it certainly won't connect to Cryptostorm's. The age of the OpenVPN build on VyOS 1.1.8 might be w...
by parityboy
Thu Sep 27, 2018 5:13 am
Forum: member support & tech assistance
Topic: How to obfuscate VPN usage from ISP in restricted countries?
Replies: 2
Views: 6858

Re: How to obfuscate VPN usage from ISP in restricted countries?

@OP If you're talking specifically about the Cryptostorm VPN service, using the ECC instances will help, since (if I have this correct) they encrypt the handshake between client and server, so it cannot be identified as being OpenVPN. The non-ECC instances cannot do this and so they can be blocked ...
by parityboy
Thu Sep 27, 2018 5:09 am
Forum: cryptofree: no-cost cryptostorm network access
Topic: Speeds
Replies: 12
Views: 25655

Re: Speeds

@blurb

Is the VPN connection on your router or your desktop? If it's on your router, that's pretty bloody impressive! :D
by parityboy
Wed Sep 19, 2018 11:20 pm
Forum: member support & tech assistance
Topic: [VyOS] VyOS Complains That ca.crt Is Invalid
Replies: 9
Views: 11173

[VyOS] VyOS Complains That ca.crt Is Invalid

Background I'm currently running pfSense 2.3.4 as a virtualised router on VirtualBox, however it seems to have issues when the number of connections it needs to maintain (e.g. for torrenting) goes past a certain limit. It's nothing to do with the state table and seems to be more to do with the inte...
by parityboy
Fri Sep 14, 2018 4:34 pm
Forum: member support & tech assistance
Topic: Cryptostorm client can't connect to the darknet
Replies: 22
Views: 30834

Re: Cryptostorm client can't connect to the darknet

@parityboy https://cryptostorm.is/portfwd On that page the qBittorrent screenshot you use shows "Use UPnP /NAT-PMP forwarding from my router" as being selected. Not to nitpick but since Cryptostorm doesn't actually use UPnP (hence the manual port assignment page), it might be better to show that op...
by parityboy
Fri Sep 14, 2018 7:14 am
Forum: cryptofree: no-cost cryptostorm network access
Topic: Speeds
Replies: 12
Views: 25655

Re: Speeds

I'm using it to test speeds, and since I torrent a fair bit I'm wondering why it's only getting really poor speeds at times, and if that would carry on with an actual token. Also I have tested with qBittorent and the speeds were the same. Torrents (well seeded ones) download as fast as the processo...
by parityboy
Fri Sep 14, 2018 7:12 am
Forum: member support & tech assistance
Topic: Cryptostorm client can't connect to the darknet
Replies: 22
Views: 30834

Re: Cryptostorm client can't connect to the darknet

df wrote:Oh that's the problem. You're using port 64496. Ports 30000 and up are now reserved for our port forwarding feature.
What port forwarding feature? :P
by parityboy
Fri Sep 07, 2018 5:40 pm
Forum: cryptofree: no-cost cryptostorm network access
Topic: Speeds
Replies: 12
Views: 25655

Re: Speeds

@bentbanana223 Just out of interest, why are you torrenting over Cryptofree? Cryptofree is really a taster service and is useful for low bandwidth services such as IRC, instant messaging and email (depending on email content, obviously). It also serves as a backup if your token has just run out; to...
by parityboy
Wed Sep 05, 2018 3:26 pm
Forum: cryptofree: no-cost cryptostorm network access
Topic: Speeds
Replies: 12
Views: 25655

Re: Speeds

@OP

I've just done a speed test using Cryptofree to grab a test file on CacheFly's CDN. I'm getting around 40-45KB/s (320-360Kbit/s). This is on an 8Mb/1Mb ADSL connection.

Could it be that Cryptofree is choking, or maybe mis-configured?
by parityboy
Wed Sep 05, 2018 3:15 pm
Forum: member support & tech assistance
Topic: cryptostorm no longer compatible with openvpn connect on ios
Replies: 3
Views: 8956

Re: cryptostorm no longer compatible with openvpn connect on ios

pedro_cucaracha3 wrote:Does anyone know a good alternative? Or is there a better way to let them know besides leaving a 1-star rating in the app store?
You could try email the OpenVPN team directly. Also, have you tried using the un-hashed token to see if that works?
by parityboy
Tue Sep 04, 2018 5:49 am
Forum: cryptofree: no-cost cryptostorm network access
Topic: Speeds
Replies: 12
Views: 25655

Re: Speeds

@OP

If I remember rightly, Cryptofree is limited to 1Mb/s download speed (can't remember what the upload is).
by parityboy
Sun Aug 26, 2018 10:47 pm
Forum: crypto, VPN & security news
Topic: [BleepingComputer] VORACLE Attack Can Recover HTTP Data From VPN Connections
Replies: 5
Views: 14849

Re: [BleepingComputer] VORACLE Attack Can Recover HTTP Data From VPN Connections

@Fermi

Cryptostorm has always disabled compression though, correct?
by parityboy
Tue Aug 21, 2018 9:58 pm
Forum: crypto, VPN & security news
Topic: [BleepingComputer] VORACLE Attack Can Recover HTTP Data From VPN Connections
Replies: 5
Views: 14849

[BleepingComputer] VORACLE Attack Can Recover HTTP Data From VPN Connections

VORACLE = CRIME for VPNs VORACLE is not a new attack per-se, but a variation and mix of older cryptographic attacks such as CRIME , TIME , and BREACH . In those previous attacks, researchers discovered that they could recover data from TLS-encrypted connections if the data was compressed before it ...
by parityboy
Fri Aug 17, 2018 4:06 pm
Forum: member support & tech assistance
Topic: Linux Mint 19 repository OpenVPN does not have a Release file
Replies: 5
Views: 14786

Re: Linux Mint 19 repository OpenVPN does not have a Release file

@OP

Yep, I just tested this myself and it appears that the OpenVPN team don't have a build for Bionic Beaver. Additionally, I noticed that on their repository page, Bionic isn't listed.
by parityboy
Thu Aug 02, 2018 2:04 am
Forum: member support & tech assistance
Topic: Linux Mint 19 repository OpenVPN does not have a Release file
Replies: 5
Views: 14786

Re: Linux Mint 19 repository OpenVPN does not have a Release file

@OP The package for OpenVPN isn't built for Mint 19 Tara but for the Ubuntu version Mint is built upon, namely 18.04 Bionic Beaver, so there will be an entry in either /etc/apt/sources.list or in one of the files in the /etc/apt/sources.list.d directory which reads "deb http://build.openvpn.net/deb...
by parityboy
Mon Jul 30, 2018 2:16 pm
Forum: member support & tech assistance
Topic: Does Cryptostorm VPN work with Google Wifi?
Replies: 2
Views: 10338

Re: Does Cryptostorm VPN work with Google Wifi?

@OP I don't use Google WiFi so I have no evidence, but if it fails to work it's likely because they are blocking either port 1194 (OpenVPN's default port) or port 443/UDP (commonly used by VPN providers to get past firewalls). In such an environment, you could use port 443/TCP to connect to Cryptos...
by parityboy
Wed Jul 25, 2018 11:44 pm
Forum: cryptostorm in-depth: announcements, how it works, what it is
Topic: Tokens - recurring vs 1-shot
Replies: 3
Views: 12150

Re: Tokens - recurring vs 1-shot

@OP

It's the right sub-forum. :) I don't see any downsides at all. If you have the cash up front, it's definitely worth it. :)
by parityboy
Wed Jul 25, 2018 11:41 pm
Forum: member support & tech assistance
Topic: paying in bitcoin, alpha-numerical address
Replies: 6
Views: 11632

Re: paying in bitcoin, alpha-numerical address

@OP

1. You could use a service like WebQR to upload the QR code image to.

2. Yes, the countdown on the token activates on first use. If you don't use it, it will last for as long as Cryptostorm are providing VPN access.
by parityboy
Fri Jul 20, 2018 7:00 pm
Forum: member support & tech assistance
Topic: OpenVPN Gnome error on Kali
Replies: 1
Views: 9520

Re: OpenVPN Gnome error on Kali

@OP

Is openvpn already installed on your system? You can find out by doing this:

Code: Select all

which openvpn
If yes, then simply try to import a VPN configuration file from the NetworkManager menu. If not, install openvpn then try to import the configuration file.
by parityboy
Wed Jul 18, 2018 10:11 pm
Forum: member support & tech assistance
Topic: Unable to connect to LAN (except router) while connected
Replies: 7
Views: 14098

Re: Unable to connect to LAN (except router) while connected

@Boens If you enter the command I posted can you then ping anything on VLAN20 from your Linux machine? If yes, then the router already knows how to route traffic between the VLANs. If no, you'll have to configure your router accordingly. By "permanent change" I mean that the route to 192.168.20.0 v...
by parityboy
Wed Jul 18, 2018 1:41 am
Forum: member support & tech assistance
Topic: Unable to connect to LAN (except router) while connected
Replies: 7
Views: 14098

Re: Unable to connect to LAN (except router) while connected

@Boens

Assuming that routing between VLANs is handled by your router, you could try something like

Code: Select all

route add 192.168.20.0 gateway 192.168.10.1
This will not survive a reboot, however. Making it a permanent change is left to you. :)
by parityboy
Tue Jul 10, 2018 3:08 am
Forum: guides, HOWTOs & tutorials
Topic: Tracker Smacker for Modems
Replies: 2
Views: 9367

Re: Tracker Smacker for Modems

@OP 1. Modems can't run OpenWRT, so you have a router. If you have to plug your router into another box to get Internet access, it will still only be a router. If your router can also plug into your phone line, it will be a modem/router (or router/modem). 2. Those two files are block lists, not cro...
by parityboy
Fri Jul 06, 2018 10:22 pm
Forum: member support & tech assistance
Topic: ECC port 5060?
Replies: 3
Views: 11911

Re: ECC port 5060?

@maltfield

The non-ECC instances are already running on UDP/443 which helps to support clients which do not or cannot have the latest version of OpenVPN installed. Additionally, I do not know if OpenVPN can auto-negotiate between ECC and non-ECC ciphers.

Perhaps it can't?
by parityboy
Tue Jul 03, 2018 6:29 pm
Forum: member support & tech assistance
Topic: cryptostorm freezes sometimes when disconnecting
Replies: 8
Views: 18230

Re: cryptostorm freezes sometimes when disconnecting

@marzametal

Yeah it's all good here, keeping the home fires burning. :D