New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Anything new out there for burning through the Chinese Great Firewall?
Over the years, I've tried using OpenVPN and sTunnel to get through the GFW, but they last for only a few days to a week before they get shut off or throttled to worthlessness. Recently, ShadowSocks was working for me but now with the project pulled by the authorities (https://www.lowendtalk.com/discussion/comment/1422314/) I'm looking for some other VPN tool.
My ShadowSocks server now won't start the service...not sure if an update poisoned it. Before I try fixing it, does anyone have any thoughts on what is currently able to penetrate the firewall there? I'm looking for something that is multi-client.
Comments
Have you tried another fork of Shadowsocks on Github?
Not yet...before I head down that road, I just wanted to see what else is out there.
BTW - do you have an suggestions on which fork you would use? There seem to be > 7000 of them out there.
Shadowsocks and its forks are okay to use...
A famous fork is Shadowsocks-RSS.
Do you have a URL for this?
http://lmgtfy.com/?q=Shadowsocks-RSS
^ Try the above. Found the github repo in first result.
myentunnel?
http://nemesis2.qx.net/pages/MyEnTunnel
https://www.softether.org/
Apparently their SSL VPN is not being blocked by the Great Firewall of China.
Local bridge is recommended over SecureNAT if you want proper speed.
Use http://blog.lincoln.hk/blog/2013/03/19/softether-on-vps/ together with http://blog.lincoln.hk/blog/2013/05/17/softether-on-vps-using-local-bridge/
I've been there... I don't read Chinese and when I looked through the repo, there doesn't seem to be any real content. Are you sure that this is the main repo for this project?
try using google translate like I did to translate the page to english?
Does anyone know of a fork which is actually maintained?
just changed the shadowsocks port to 443 or 3389. You will see it work again
I set up SoftEther for someone. Works fine
Port 443 with UDP accel enabled
When I was there, about 3 months ago, even a very customised OpenVPN was blocked. I got there and realised this. Astrill, what everyone uses, works but is painfully slow. I found an iPhone app called Netpas that was reliable and much faster than Astrill.
This is if you want something easy, of course.
OpenVPN + obfuscation?
Why don't you use a ssh tunnel with port forwarding?
And use port 443 so it just looks like https.
From a few friends in China I heard that SSH tunnels work however are really slow compared to a working VPN/proxy on the same server. Same might happen to OP but it's worth a try.
I still would go for SoftEther SSL VPN on port 443 and local bridge configuration for good transfer speed.
Heh great. Nothing is great anymore. For everything is a solution.
I think the wall is still easy to go through..
Just don't think general purpose VPN protocols are reliable ways.
Note that even with SS, you will need a local relay (in their datacenters) to forward your traffic for a higher worldwide internet priority...
strongly recommend shadowsocks as a chinese.
Use 256-AES
Does Tinc work? It seems mesh networks might be a bit more reliable.
I have that TorGuard thingy, I don't use it but it says it has a special "Stealth" connection option which says it works in any country with a regime block on the internet. Something to do with OpenVPN 256-bit AES obfuscation or similar.
AFAIK, GFW blocks OpenVPN by blocking the protocol (or their cert...), but you still have a chance to connect if you use TCP 443
Yes shadowsocks is a stable thing, and it's "RSS" fork is made by a girl!
Cisco Anyconnect is the most stable thing, I've never seen any problems with this. This is just like SSL traffic especially if you use port 443.
OpenVPN on TCP 443 did not work for me.
I'm curious if you used a commercial provider or your own server. Commercial services have known IPs and are blocked in many places that I've seen. I can imagine that using your own VPS would be more successful.
@Ole_juul
No need for 443...I am pretty sure ssh is not blocked....or throttled..
Secretly dangle a bunch of fiber over the physical Great Wall of China to pccw in Hong Kong and voila as if by magic you have bypassed it. /sarcasm, stick with shadowsocks
There is actually a Video about the CGF from 32c3: