How to setup a VPN that China couldn't crack.

[matt12046]

A lot of people I know are concerned with internet security and sadly some are not so I figured I would give you guys a hand with setting up a virtual private network. A VPN is basically a way of saying that you are taking the up most precaution when it comes to your data, wheather its a home or on a public Wi-Fi access point. By routing your information through a tunneling protocol you are removing the risk of attacks much like the fire sheep incident a couple of years ago and a man in the middle attack.

A good first thing to do is get educated. Wikipedia, google, http://www.vpnbook.com/, these are just a few places to get your head on straight.

First we'll start with a VPN client, you can pick one of these up free at http://www.openvpn.net. It may take a little digging but you're looking for http://openvpn.net/index.php/downloa...downloads.html. That will be the client you'll use to connect to a server.

Next up is finding an appropriated security certificate. Lucky for you http://www.vpnbook.com/ has it right on there first page. Just scroll down to the option that says port 53. Once downloaded open the file and install the certificate. At this point you should have the VPN GUI installed and see the icon in system tray. Right click and select edit config, copy from the config folder included in the certificate folder and paste it in there. Save and your done.

Now right click the tray icon, and select connect. It will prompt you for a username and password those are as follows.

Username: freeopenvpn

Password: J8hfCiu6W

Now that you've connected to go http://dnsleaktest.com to make sure that your vpn is air tight. With this server you should see that it thinks you're in Romania. :)

If you are seeing your ISP listed in the DNS server list your are NOT secure. follow the instructions on dnsleaktest.com on ways to fix that issue. Once you're only seeing one DNS server you're golden.

Please don't use this for evil, use it to stay safe.

Have fun!

[azeotrope]

A nice intro to VPN. As mentioned by the OP stick to OpenVPN: its free, open source and secure. PPTP is insecure

[BenHTBDT]

Great guide!

Just a heads up, you made a typo on the openvpn link. It has .com instead of .net, leading to a filler site. Might wanna change that. ;)

[matt12046]

Great guide!

Just a heads up, you made a typo on the openvpn link. It has .com instead of .net, leading to a filler site. Might wanna change that. ;)

Good eye. Thanks for that.

[matt12046]

Also, an update. If you are using a wireless router you may still notice you ISP's DNS server showing up when you check for leaks. This is because your router is still set to DHCP mode and is recognizing the servers with your ISP. A simple fix to this is to bypass your router and connect directly to your NIC.

[matt12046]

I use https://www.privateinternetaccess.com/ as my service provider but i use the OpenVPN client as its awesome. i wish more people would use VPN's as a standard measure.

the more we encrypt the less snooping ass ISP's can bother us. and people, stop using facebook! we should be protective of our privacy not giving it to dot coms like its worthless.

great post btw :)

Thanks man. I completely agree.

[s0nrise]

I Have my own L2TP over Ipsec vpn installed in my server.

Its much faster and it doesnt require any special clients, its also more secure.

I would rather go that way if you are planning to setup a vpn

[matt12046]

While L2TP encrypts data twice it still doesn't rely on securing both ends of the connection. How ever it does do a good job of keeping things hidden. I personally consider that more of a "paranoid" option. Given that it takes a little more setup and more CPU processing power I wouldn't recommend it for use on a netbook for instance. This was meant as more of a beginners guide but I see where you're coming from.