I am running a VPN on multiple PCs across my network (all Windows 11). The VPN is working properly on all of them and testing shows no IP leaks on either IPv4 or IPv6, no DNS leaks, and no WebRTC leaks. One PC, however, is leaking only the IPv4. I am assuming this is a setting somewhere in Windows or Chrome, but cannot find it for the life of me.

Any advice is appreciated.

One or two apps on my Android need a VPN to connect, but some apps don't work when VPN is on

Is it possible on my smartphone to restrict or bind VPN to only 1 (or few) specific apps??

Thanks

Im mostly lurking, dont find much on dVpns on reddit

You likely heard about the AT&T data breach, where millions of users' account information was posted to the dark web. I was notified by a third party that my information is exposed, and I should change my AT&T and related Yahoo! Mail passwords.

I found that I wasn't able to change my passwords from VPN-connected computers or mobile devices. I had to use an older computer to change them, which doesn't have a VPN client installed.

I imagine this is because AT&T doesn't like me evading their data hoovering.

Wondering if other users have experienced this? Maybe it is happening for a different reason and I am way off base.

Hi all,

Looking for a way to test our endpoints against Chinese firewall - everything i get googling china firewall is how to get around the firewall - i want to simulate an environment that mimics being inside china

Hello, I am trying to learn vpn and I am having an issue with viscosity 1.11 and can't seem to find a lead. Don't hesitate if there is any improvement I can make to my configurations.

Before, I used viscosity 1.10.8 to connect to my server(container running ubuntu focal). I had no issue using openvpn 2.4.9 and openssl 1.1.1.

my connection configuration:

#viscosity name "Nextcloud 1"
#viscosity protocol openvpn
#viscosity startonopen false
#viscosity usepeerdns true
#viscosity dns automatic
#viscosity autoreconnect true
#viscosity dhcp true
remote 192.168.1.250 1194 tcp-client 
dev tun
 tun-mtu 1500 
compress lzo 
pull 
tls-client 
ca ca.crt 
pkcs11-id --truncated--
pkcs11-providers /Library/OpenSC/lib/opensc-pkcs11.so 
remote-cert-tls server 
tls-auth ta.key 1
comp-lzo yes 
mssfix 
pkcs11-pin-cache 86400 
tls-version-max 1.0 
tun-ipv6 
verb 4

I recently upgraded to openvpn 2.6 ( openssl was upgraded automatically ?) because I saw in the viscosity 1.11 release notes that openvpn 2.5 was no longer supported.

$openvpn --version

OpenVPN 2.6.10 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO] library versions: OpenSSL 1.1.1f 31 Mar 2020, LZO 2.10 DCO version: N/A compile time defines: --truncated--

my openvpn.conf on the server

port 1194 
proto tcp6-server # IPv4 and IPv6
# type VPN, tun (tunnel IP) or tap (tunnel Ethernet/bridge)
dev tun
mode server
#ifconfig-ipv6 truncated truncated # Second parameter is mandatory
ifconfig-ipv6 truncated truncated
ifconfig-noexec

client-connect /etc/openvpn/start_ipv6_server.sh
script-security 2
client-config-dir /etc/openvpn/Users/

client-to-client

# Security
#ca /etc/PKI/CA/CA_full_fr.pem
#cert /etc/PKI/SSL_Servers/SSL_Server_artingo.fr.pem
#key /etc/PKI/SSL_Servers/SSL_Server_artingo.fr.key
#dh /etc/PKI/SSL_Servers/server.dh2048.pem
#tls-auth /etc/PKI/SSL_Servers/openvpn.common.ta 0
key-direction 0
tls-verify /etc/openvpn/client_verify_cert.sh
tls-server
cipher AES-256-CBC # was commented
#auth SHA256
# The keepalive directive causes ping-like
keepalive 10 220
txqueuelen 1000
nice 10
tls-version-max 1.2  #was 1.0
verb 4

# Because we downgrade privileges
# persist-tun
persist-key

comp-lzo

# Log
verb 4
mute 100
status /var/log/openvpn/server-status.log
log-append /var/log/openvpn/server.log

# Crl
crl-verify /etc/openvpn/revoqued.crl

So far so good, I had no issue connecting to my server.
After the upgrade to 1.11, I can't connect. I did some research and found that tis 1.2 is the minimum required for v1.11. I couldn't find instructions on how to update to openssl 3.0 on my server ( maybe I just didn't look hard enough)

I tried some changes in the connection conf and here are the results:

with the old viscosity configuration (the one I always used) : looping between Connected and Disconnected

2024-04-04 17:37:26: Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
.
.
2024-04-04 17:37:32: State changed to Authenticating
.
.
2024-04-04 17:37:32: OpenSSL: error:0A00014D:SSL routines::legacy sigalg disallowed or unsupported:
2024-04-04 17:37:32: TLS_ERROR: BIO read tls_read_plaintext error
2024-04-04 17:37:32: TLS Error: TLS object -> incoming plaintext read error
2024-04-04 17:37:32: TLS Error: TLS handshake failed
2024-04-04 17:37:32: Fatal TLS error (check_tls_errors_co), restarting
2024-04-04 17:37:32: TCP/UDP: Closing socket
2024-04-04 17:37:32: SIGTERM[soft,tls-error] received, process exiting
2024-04-04 17:37:32: State changed to Disconnected (Process Terminated)

with this viscosity configuration

cipher AES-256-CBC
comp-lzo yes
mssfix
pkcs11-pin-cache 86400
tls-version-max 1.2
tun-ipv6
verb 4



2024-04-04 20:48:07: State changed to Authenticating
2024-04-04 20:48:07: TLS error: Unsupported protocol. This typically indicates that client and server have no common TLS version enabled. This can be caused by mismatched tls-version-min and tls-version-max options on client and server. If your OpenVPN client is between v2.3.6 and v2.3.2 try adding tls-version-min 1.0 to the client configuration to use TLS 1.0+ instead of TLS 1.0 only
2024-04-04 20:48:07: Unsupported TLS protocol detected: disconnecting.
2024-04-04 20:48:07: OpenSSL: error:0A000102:SSL routines::unsupported protocol:
2024-04-04 20:48:07: TLS_ERROR: BIO read tls_read_plaintext error
2024-04-04 20:48:07: TLS Error: TLS object -> incoming plaintext read error
2024-04-04 20:48:07: State changed to Disconnecting (Unsupported TLS Protocol)
2024-04-04 20:48:07: TLS Error: TLS handshake failed
2024-04-04 20:48:07: Fatal TLS error (check_tls_errors_co), restarting
2024-04-04 20:48:07: TCP/UDP: Closing socket
2024-04-04 20:48:07: SIGTERM[hard,tls-error] received, process exiting
2024-04-04 20:48:36: State changed to Disconnected (Process Terminated)

https://preview.redd.it/0ko0glsw3isc1.png?width=500&format=png&auto=webp&s=1453c21cd9626105d6d8b8b5e53b59f255ef6abc

I also think I should remove the old tls version and that sslv3. but do I have to regenerate the keys and certificates ? sorry if this question seems stupid.

$openssl ciphers -v | awk '{print $2}' | sort | uniq
SSLv3
TLSv1
TLSv1.2
TLSv1.3

I heard you can get things for cheaper from other countries if you use a VPN. Is it this legal? Is that what the billing address is used for, to make sure you're being taxed the right amount?

I use the free "planet vpn" and am trying to watch manifest from ireland. It worked for a few days and stopped. Can anyone help? I dont want to pay for vpns

Hello, I am pretty new to vpns, but basically I have a close friend in a country with pretty restricted internet, I have a server in my house that is only running a Minecraft server and I wanted to make it be a VPN for her. What's the easiest way I can do this? Server is running Ubuntu Linux. Also: how demanding on the PC will that be?

i’m trying to make a netflix account with a vpn in order to benefit from a lower price but it’s saying there is an issue with my payment method anyone know why that might be?

Not sure how VPN works and how would I know my IP address and other address is safe. I own an Apple 14 and would like to know if I’m secure? There’s this info (scandal)I stumbled upon and I want to shed light to it by using social media platforms and I want to remain anonymous and to be extra secure I want all my addresses to be protected. Not sure if I’m making sense.

Since we get a lot of asking for VPN provider recommendations, we're making this megathread a monthly occurrence (you'll find the newest one at the top subreddit menu). It's a chance for you to ask for or recommend your favorite provider.

When recommending a provider, you must mention at least a couple points for why you prefer it. Don't just list VPN features that are common knowledge - explain why you chose it. Comments simply mentioning a provider's name aren't allowed. No affiliate links, links to review sites, or VPN provider websites. No shilling either.

You might also want to check out our comparison table. We update it regularly so you could find a provider that ticks all your boxes. There's also a pinned special deals thread for when you decide.

Keep in mind this megathread will still be looked after by the mods.

I have some questions about using VPN in routers:

• Do VPN routers use shared or static IP addresses?
• Would websites such as Google trigger Capchas when connected to a VPN router?
• What are the chances of being blacklisted from a website such as Netflix?
• Would you get locked out from either PayPal or online banking when being connected to a VPN router?
• How to avoid these measures while being connected to a VPN router for security purposes?

​

Hello,

Few weeks ago I installed some DNS Changer Apps on my phone (Xiaomi Redmi 9, Android 12)

And I stupidly changed some settings and now I cannot open Google with my VPN on.

I've uninstalled all the apps (4 Apps: 0.0.0.0, 1.1.1.1, DNS Changer and An another app called "Shecan" which is basically another DNS Changer.

And now, I can't change anything. The only thing I can change is Private DNS, and it's on "Auto".

And since I live in Iran a lot of things (Websites, Apps, Games, Etc.) are Censored by the government... So... I've changed some settings just to avoid using a VPN.

I'm "Kind of" Sure that I've turned everything back to the way they were, but with the problems I'm having (like Google won't open when I'm using a VPN, ...) I don't think I've REALLY Turned everything back to the way they were.

I've uninstalled all the apps, Reseted Network Settings, Restarted my phone a dozen times

But still I'm having this annoying problems.

And also recently "V2RayNG" Stopped Working too...

I'm using this phone for my job, and this issue started slowly to become a Serious Problem.

P.S: Whenever I want to Google something, I have to turn off my VPN.

If I open it with the VPN still ON, it says something like "No Network Connection" or "Error 403" or ERR_NETWORK_CHANGED or something like that.

If anyone knows how to fix this problem, PLEASE Help Me.

I wanted to read some articles which are usually free and clear without VPNs, but I accessed the site and received a full stop. Website was Times of Israel and the site gave me a message saying to contact the organization if you are not using a VPN.

I find it weird. Why would a news site block information based on VPN usage? Ive only had this problem on Times of Israel, please let me know if other news sites do the same

Recently i started using a free vpn because of my lack of money, But soon to come were many consequences.... everything was fine because i could play my favourite games but only a week after using it. All of my accounts started to become inactive or were being occupied by a different email. This vpn will cull all your data and wait for the right time to strike. If you check the images you can see that my epic accounts email has changed and by coincidence it wasnt me. I will not disclose its name as it is prohibited on this subreddit. but god help yourselves

https://preview.redd.it/exyesdzb7asc1.png?width=796&format=png&auto=webp&s=281d4ed0c8b00723dba927b05dc033f85859afc3

I'm not sure how to explain this, but I used a 7-day trial to watch Netflix from Canada. After using it for a few days, I deleted it from my phone and PC. However, now, 2 to 3 weeks later, both my phone and PC still think I'm in Canada. When I use my location, Bing shows Canada, which affects my use of Bing Rewards. Despite flushing the DNS cache of all my browsers, Windows 11, and Edge on my phone, forgetting and re-adding my network, and restarting my modem, it still indicates Canada. The only way to correct my location is to use a VPN set to my own country. Does anyone know what's happening and how I can resolve this?

I'm thinking of buying the owlet sock (baby vital monitoring system), but in Canada you don't receive live updates - only 10 minute historic trends which I am not interested in. I'm sorry if this is a silly question, I read over the FAQ and searched - it seems like maybe? I see people mentioning using the netflix app, but I just wanted to be abundantly clear before I spend $500

Hello, I’m running Frostwire and also using a VPN. I’ve checked my IP address on ipleak and canyouseeme and the VPN is working. But, on my VPN detector in the tray on Frostwire it has a red dot meaning not connected. On my phone it has the green dot. I’m just wondering will anyone be able to see me on Frostwire? Thanks

I have been working remotely from overseas since 2021. I take calls for a U.S company. Never had a problem until recently. I couldn't hear anything through my headset so I began troubleshooting by using other applications and or websites such as youtube, and the headset is just fine. I ended up reporting the issue to management thinking it would be a quick fix and everything was well until my manager says to me "send me a screenshot of your internet speed" I had no choice but to send it to him. After viewing my internet speed he goes... your internet speed does not meet the minimum requirement. Mind you, he's not tech support he's just my manager.

I was forced to buy a ticket back to the U.S. and here I am trying to solve the problem.

1. When I do a DNS LEAK TEST, it's fine.
2. I have access to all other application in my work computer. It is just the dialer that's giving me trouble. I need to solve the problem ASAP!!!!!

CAN SOMEONE DIRECT ME TO ANYONE OR A COMPANY THAT CAN HELP ME WITH THIS ?

My uni provides all the students with a wifi which has a speed cap of 7mbps. The thing is, after 12am they somehow shutdown the wifi connection without really shutting it down. There wont be internet access but you can still connect to the wifi. It comes back only at 5am. The wifi that they provide gives really low latency for gaming despite its capped speed. which is why everyone uses it over cellular data. Recently a senior told me about a specific vpn (xVpn) from microsoft store when used lets me use the wifi even after 12am. The thing that im confused about is that only specific vpns work for bypassing this wifi restriction. In my phone, a vpn application called “psiphon” does the job but when i try to access the wifi with other vpns during the shutdown period, it doesnt work. Can someone explain why is it so? I want to know because when i use xpvn, it connects to singapore server and my ping in valorant becomes 42ms for singapore and around 90ms for mumbai (im from india). But without vpn, the same wifi network gives me around 20ms for mumbai and 30ms for singapore. Is it possible to get a proxy or something that lets me bypass the wifi restriction and connects to my country’s server so that i can play with lower ping?

Paying like $2/mo for a VPN.

Using a personal laptop.

The WiFi is paid for by my employer.

Can my employer see what I'm doing?

Sorry if this is a dumb question but how come I can watch literally everything on Tubi except Columbo when I use a VPN? I turn off my VPN and presto, now I can watch Columbo. Wtf?

Promise I didnt cone to redit first.

Im very new to VPN so I think all my questions are simple

Is it a service or is it a physical item like say a roku

Can it be shared? Say like I want to use it in 1 state were i live and let my brother use it in a difforent state were he lives at the same time

Can it be used on a PlayStation for Netflix ?

Will Netflix see it as "another user" and want to charge me for a difforent line . like will they see it at " account sharing"

I looked on Google for about 45 mins and didnt know how to asked in a way that was giving me any answers so I crossed my fingers and came here were all my heros live( love redit) but I try not to use redit as a replacment for Google . so my bad if this info is out there and easy to find

Salute I used hotspot from phone that is connected to google accounts with location and activity permission granted and I connected another electronic product to the hotspot. The other product is not connected with google accounts and used vpn application from there. I used google search, could google trace me in this scenario ? cheers

Hi folks,

​

if I use my laptop exclusively via hotspot with my cell phone and my iPhone has a VPN active, I don't need to set up a VPN on my laptop, do I?

From what I understand, if a vpn is enabled on mac, windows, iPhone and Android all of the devices traffic goes directly to a vpn server and then is sent to it destination while encrypted. But on linux that is not the case, why is that?

Further more I feel like alot of linux vpn users are unaware of this ..

Stood up a client location in Houston, TX. They're on AT&T DIA (ADI). We're utilizing Fortigates and are tunneling their traffic to our hub at the datacenter in Dallas, TX.

According to this screenshot, their location is getting ping times of about 40ms to Quad9 whereas pinging Quad9 via the tunnel results in 10ms times. 30ms faster

Now this doesn't apply to all destinations... According to this screenshot, this location is equally getting 10ms directly out the WAN connection and via the VPN tunnel.

Short TLDR; A vpn can but will not guarantee lower latencies

Is there a site or browser plug-in where you can check, if a film or show can be streamed in a country without paying?

Let's say I want to watch "Woman in the Dunes" from 1964, and I'm not (immediately) ok with breaking the law. I check justwatch.com and see that there is no way to stream or buy an HD copy of the film in my country, but I'm also not willing to manually go through every country on there, with the hope that one of them might have it legally available for free with ads or by making an account. Is there some place/database where I can just check it with minimal effort?

Yes, I know that certain VPNs are good for torrenting and the like, but if it's being legally published somewhere, then the people responsible for the work are at least getting some money (even if it's free for the consumer)