OpenVPN and Linux
Currently I use a commercial (subscription) OpenVPN-based service for general privacy. I have no complaints but I don't like the idea of relying upon commercial service. I started research self-configured OpenVPN and became very overwhelmed.
I am extremely new to the VPN concept, so forgive my ignorance. However, I frequently see these 2 terms: a) server and b) client My understanding is that the "server" is what I connect to while using my subscription VPN service. The "client" in that case would be my pc. Is this correct? If that is correct, then how does that server-client model factor into "Do-It-Yourself" VPN service? Does it mean I would require a 2nd computer to act as a host (server) while my main computer acts as a user (client)? Or is it possible to put server and client into 1 device (my main pc)? I appreciate your insight. I would also appreciate any links to "beginner" level information, insight, instruction, etc regarding OpenVPN. Thank you. |
Quote:
Quote:
Quote:
What kind of 'privacy' are you after ? It is possible to use DNS servers from your PC that will not track you, ( or use Go Duck Go ) and it is possible to use encryption with emails, and HTTPS is supposed to be encrypted by default. If you download torrents etc it probably is better to use a VPN though. There are caveats with that too though.... Regards |
OpenVPN and Linux
hi one of the best place to look is here: https://openvpn.net/index.php/open-source/documentation/howto.html
Server is a pc where openvpn run in a "server" mode, for example; a pc at work turned on 24/24 hours that permit the access (openvpn in server/daemon mode) to the work network for the employers from their home pc or laptop when they are out of office... Run server and client in the same pc have not sense |
Well, just general privacy is my goal. I am boring. I don't download torrents and I only used tor to see what that part of the web is like (scary - do not want to go there again).
I suppose my goals would be: encryption of all my outgoing traffic (OpenVPN will do so, correct?) and if possible, disguise my IP. For example, the service I now use somehow makes my IP look like I am in another country. I think the service actually has servers in those countries. I don't necessarily need to appear like I am coming from another country but I would like to disguise my IP somehow. Would OpenVPN help with those 2 goals? |
ceyx - You stated "It is possible to use DNS servers from your PC that will not track you"
Could you (or anyone, really) clarify what that means? Please speak slowly and use small words. LOL. |
Quote:
Quote:
Quote:
Quote:
|
Quote:
For example, some of them keep logs that can be subject to search, seizure etc. Some keep no logs at all. Some accept bitcoin, some accept Visa, Mastercard - so the latter knows who you are, and so will the authorities. Another example is when OpenVPN setups use YOUR DNS settings to do your internet searches, so if say you do a search on google of AK-47's, child porn or whatever is taboo, it does not go out the VNP, it uses your IP to do searches, and it would be a direct link to you. Which brings us to DNS : Quote:
There are search engines that you can use that will not track your searches, such as Duck Duck Go, and there are DNS providers that you can setup by default in your router and on your computers that will not track your searches. Do a search on them ! There are many who would read this and think it does not go far enough - which is true there is much more you can do ( ala Snowden ) . But if you are just concerned about nosy parkers, and are not doing anything objectionable then this would work. Read the Terms of Service from your OpenVPN provider. Get off Facebook ! Do not post anything you wouldn't want your Grandma to see :) |
Quote:
|
Quote:
I read a story recently about an American Muslim who was born in the States, who went to visit his family in the Middle East. ( One Dot ) Much later, his son used his dads laptop to do searches on Flight Instruction, cause he wanted to learn to fly a glider or whatever. ( Two Dots ) The authorities busted down his door, arrested him and his son, confiscated the computer equipment. It all blew over after a while, but I am sure they were shaken by the incident. Maybe now he does not use his regular DNS provider ? The novel 1984 gets into this : the retroactive evidence sifting to paint the picture they wanted to see. Stalin did it too. |
DXWow - this got complicated quickly, but I do thank all for the replies.
I am aware of start page and duckduckgo. I use them regularly, even though I don't do anything illegal or taboo. My VPN service does the following: a) encrypt all my internet traffic. The company stated I must connect to it before doing anything online in order for the encryption to work. b) provide proxy service by making my IP address appear as a different IP address. The company has servers in other countries so I assume it routes my encrypted traffic through those overseas servers. c) the customer support gave me what it called "Google DNS" numbers to use when I first installed the VPN software. My goal is replicating those 3 functions instead of purchasing them. How can I do it? Is openvpn all I require? Or would I require more? I hope this followup clarifies my question and goal. Thank you. |
I an closing this thread and reposting in the "Networking" section which seems more relevant.
|
All times are GMT -5. The time now is 04:17 AM. |