• Members 2 posts
    Jan. 1, 2019, 1:55 p.m.

    First Of all Congrates on idea ..
    i've vpn blocked on my country .. EGYPT
    can i suggest converting tls auth to tls crypt .. works fine here on HTB ovpn
    i've edited my ovpn file but it has to be done server side too

    hope to hear from u soon

  • done

    Thread has been approved.

  • Members 29 posts
    Jan. 2, 2019, 12:08 p.m.

    TCP/443 would be great. It is more and more common to restrict outgoing traffic e.g. @work... ;-)

  • Members 3 posts
    Jan. 2, 2019, 2:31 p.m.

    The problem is, that the Web server is the same server as the VPN-Gateway. TCP/443 is in use for the Webpage.
    I would try to provide a second VPN-access with UDP soon. If this does not work we can try around for some elegant solutions.

    But I need some time to prepare that.

  • Members 3 posts
    Jan. 2, 2019, 10:27 p.m.

    Update:
    We now provide also tcp, please try it and give me feedback.You need to change "proto udp" to "proto tcp". The port remains the same for now.

  • Members 2 posts
    Jan. 3, 2019, 9:10 a.m.

    Thu Jan 3 04:08:14 2019 TCP/UDP: Preserving recently used remote address: [AF_INET]94.16.116.84:1194
    Thu Jan 3 04:08:14 2019 Socket Buffers: R=[87380->87380] S=[16384->16384]
    Thu Jan 3 04:08:14 2019 Attempting to establish TCP connection with [AF_INET]94.16.116.84:1194 [nonblock]
    Thu Jan 3 04:08:15 2019 TCP connection established with [AF_INET]94.16.116.84:1194
    Thu Jan 3 04:08:15 2019 TCP_CLIENT link local: (not bound)
    Thu Jan 3 04:08:15 2019 TCP_CLIENT link remote: [AF_INET]94.16.116.84:1194
    Thu Jan 3 04:08:15 2019 TLS: Initial packet from [AF_INET]94.16.116.84:1194, sid=b5be39c6 3144ec95
    Thu Jan 3 04:08:34 2019 Connection reset, restarting [-1]
    Thu Jan 3 04:08:34 2019 SIGUSR1[soft,connection-reset] received, process restarting
    Thu Jan 3 04:08:34 2019 Restart pause, 20 second(s)
    ============================================
    nup ... failed too
    it will work if you've enabled trls crypt instead of tls auth option ... server side :)

  • Members 3 posts
    Jan. 3, 2019, 12:14 p.m.

    Okay now it is implemented with tls-crypt! Please log in an take the new configuration: labs.wizard-security.net/vpn/

    Please give me feedback if it works. If not we will find a solution ;) :D ... The only way to stop us is shutting down the Internet!

  • Members 2 posts
    Jan. 3, 2019, 1:16 p.m.

    works GREAT .... thanks alot :) :D
    going hacking now ;)