From: "Peter Davis" <peter.davis1...@proton.me<mailto:peter.davis1...@proton.me>> Date: Tuesday, 12 December 2023 at 19:29:03 To: "Witvliet, J, Ing." <j.witvl...@mindef.nl<mailto:j.witvl...@mindef.nl>> Cc: "openvpn-users@lists.sourceforge.net" <openvpn-users@lists.sourceforge.net<mailto:openvpn-users@lists.sourceforge.net>> Subject: Re: [Openvpn-users] Bypassing censorship devices > On Tuesday, December 12th, 2023 at 10:45 AM, > j.witvl...@mindef.nl > <j.witvl...@mindef.nl> wrote: From: "Peter Davis via Openvpn-users" <openvpn-users@lists.sourceforge.net<mailto:openvpn-users@lists.sourceforge.net>> Date: Tuesday, 12 December 2023 at 07:08:08 To: "Tincantech via Openvpn-users" <openvpn-users@lists.sourceforge.net<mailto:openvpn-users@lists.sourceforge.net>> Subject: [Openvpn-users] Bypassing censorship devices Hello, How to use OpenVPN in a country that uses internet censorship devices to block VPN services? Is there a way to hide OpenVPN or make it look like a normal internet connection? Cheers Yes, there are several ways to hide the fact that you are using OpenVPN. The first one, is using http encapsulation. That is considered easy, as it is a built-in option by OpenVPN. However, network analysis can show its contents. The other is using httpS encapsulation around OpenVPN. For that you need an extra program, like stunnel. In BOTH cases, the other end of the tunnel needs to support it. Besides that, one might also need to use onion routing (TOR), to hide your destination. (VPN-end-point) Dit bericht kan informatie bevatten die niet voor u is bestemd. Indien u niet de geadresseerde bent of dit bericht abusievelijk aan u is toegezonden, wordt u verzocht dat aan de afzender te melden en het bericht te verwijderen. De Staat aanvaardt geen aansprakelijkheid voor schade, van welke aard ook, die verband houdt met risico's verbonden aan het elektronisch verzenden van berichten. This message may contain information that is not intended for you. If you are not the addressee or if this message was sent to you by mistake, you are requested to inform the sender and delete the message. The State accepts no liability for damage of any kind resulting from the risks inherent in the electronic transmission of messages. Hello, 1- In any case, I need the OpenVPN Connect program or similar programs to connect to the OpenVPN server, and these programs are detected by Internet censorship devices. No problem with that. 2- Do you mean that in http encapsulation mode, an eavesdropper can see the contents of the packets? They can see THAT you are using OpenVPN (and start asking questions about that), but of course NOT the content of your OpenVPN packets! 3- Can you point me to an article about setting up OpenVPN with Stunnel? There are nice examples with all sorts of inner protocols, like telnet. https://wiki.teltonika-networks.com/index.php?title=Stunnel_configuration_example_using_Telnet&mobileaction=toggle_view_desktop Dit bericht kan informatie bevatten die niet voor u is bestemd. Indien u niet de geadresseerde bent of dit bericht abusievelijk aan u is toegezonden, wordt u verzocht dat aan de afzender te melden en het bericht te verwijderen. De Staat aanvaardt geen aansprakelijkheid voor schade, van welke aard ook, die verband houdt met risico's verbonden aan het elektronisch verzenden van berichten. This message may contain information that is not intended for you. If you are not the addressee or if this message was sent to you by mistake, you are requested to inform the sender and delete the message. The State accepts no liability for damage of any kind resulting from the risks inherent in the electronic transmission of messages.
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
