Using a hotel internet connection securely?... - Networking

How do you do this? I have just been reading up on this and apparently it is very easy to get hacked or for someone to see what you are doing when you are connected to a hotel connection. I am going on vacation in about a month and plan on using my laptop on the hotel network. From the research I have done it seems like a VPN is my best bet? Anyone know about this stuff? I just don't want my passwords and credit card info getting swiped.

Use OpenVPN and tunnel all of your laptop's traffic to a secure remote location, or better yet, to a computer at your own home that has the OpenVPN server setup properly.
This will make it very difficult for anyone to see what you are doing.
Or, tether your phone's internet if that is a possibility for you and then use OpenVPN on your phone's tether if you're still worried.

DIY
If you're running Windows you can make your Windows computer a VPN server really easily. Here's how.
Windows XP
http://www.onecomputerguy.com/networking/xp_vpn_server.htm
Windows 7
http://www.windows7library.com/blog/networking/a-quick-vpn-server-using-windows-7/
Then you need to go into your router and forward port 1723 for VPN traffic to the computer you just set up this VPN server on. Do a search on the brand name of your router plus 'incoming vpn port forward'
Once that's set you'll need a Dynamic DNS service so that you can access it over the Internet by name, even if your IP address at home changes. You can set this up for free here.
http://dyn.com/dns/dyndns-free/
Of course if you're on a Mac I can't help you there lol, I'm not a Mac guy.
Last up, if you're at a hotel, VPN connections don't always work coming out of a hotel due to cheap/crappy setups. To PoisonWolf's point, having tethering on your phone is always a great backup in case the hotel's Internet access isn't good.
B

Related

Internet Sharing and Cisco VPN

I am running into an issue that is specific to the thread subject. I *think* I know what the problem is, but I'm not sure how to get a solution out of this. To start off with, Internet Sharing is working fine when I tether my phone to my laptop with a USB cable. Furthermore, I can even connect to our Cisco VPN 3000 concentrator just fine from my laptop using the Cisco VPN client (5.0.00.0340). This is from a Windows XP SP2 machine. While connected with the VPN client, I can do anything on the Internet like normal with Internet Sharing. However, what I cannot do is interact with anything on our office LAN--whether via hostname or IP.
I think this is because of issues with subnets. Our office subnet is 192.168.0.0/24. This is the same subnet that Internet Sharing gives my laptop an IP from, but it's not the one from our office LAN (obviously... since I get this before I fire up the VPN connection). As a result, I think it creates a conflict with routing and my laptop doesn't know how to talk to anything in the office. Is there a way to make Internet Sharing give me a different IP from a different subnet? ie: 192.168.1.0/24? I assume this is the answer to my problem. So far I haven't figured out how to get Internet Sharing to use another subnet when giving out an IP to my laptop.
Any help or ideas would be greatly appreciated in this matter. So far I haven't found the answer while searching this forum, but I'll continue to search in case I'm looking for the wrong things. Thanks.
Go figure... my luck seems to always be that I post a question and find my answer right after I post. This post had the information I needed. It was throwing me off because my IP entry for that adapter was empty, but the subnet mask wasn't. Apparently it defaults to 192.168.0.0/24 if you enter nothing there. After I manually entered in an IP, access to our office LAN is possible when connected with our VPN client. Hopefully this might help someone else in the future.

Has anyone tried setting up a VPN connection on their Note?

From my desktop i am using BeeVPN and would love to have my phone connection using the VPN protocol protecting my traffic on my phone as well.
So now i am hoping someone here are using either beevpn or a similar service and have setup a secure vpn on their note and would share their experience in doing so?
I've setup a VPN to my home using Windows 7's built in VPN server. I used Dyndns to sort out the physical IP address to my home (since I don't have a static IP) and then set up the port forwarding on my router to forward VPN connections to the PC I have running the VPN service.
Works like a charm (PPTP protocol being used.)
I have openvpn on my XP home machine and also on my (rooted) note. It is a bit fiddly to get the note's internet traffic routing via the home XP box - that does not happen by default on an openvpn connection, you have to set it up in the openvpn server config file. Should then be OK but unfortunately, pushing the default gateway doesn't seem to work on Android in practice. The openvpn client on the note has a workaround for this - a menu option to "fix DNS problems" which does the job after the VPN is established.
I use this method for any stuff I do on public wifi other than basic web surfing where I have no security concerns. So, banking, utilities etc. all goes over VPN. I also use it when I need to present my home IP address rather than thet of the connection I'm currently on: eg. for watching UK TV streams whilst outwith UK, and for remote access to 3rd party systems that sit behind firewalls which allow my static home IP through but nothing else).
Connecting to the VPN from public wifi/3G is very easy (once I've woken the XP box with Wake on LAN). The only real downside is that your download speed over the VPN in this configuration is limited to the UPLOAD speed of your home broadband. I get 800Kbps which is sufficient for decent video streaming (skygo/TVcatchup).
The other major benefit of VPN is that you can remotely access your home PC's and services on them via internal ip addreses without having to open up ports on your router on the WAN interface.
I've had a Vpn set up on my note for about 4 months now with no problems.
I use vpnaccounts.com as the server very easy and simple to setup.
I just wish the Vpn would work using my data connection and not just Wifi but we can't have everything!
georgios73 said:
I've had a Vpn set up on my note for about 4 months now with no problems.
I use vpnaccounts.com as the server very easy and simple to setup.
I just wish the Vpn would work using my data connection and not just Wifi but we can't have everything!
Click to expand...
Click to collapse
I'm located in Brazil and also use vpnaccounts.com on my laptop, pc, Galaxy Note and Nexus S. The server I connect to is in Dallas Tx.
I also use the 1 VPN app which gives you 1 click logon.
Everything works great!
Yes but don't you have to enter your VPN password every time you want to turn on the VPN?
I can't find a way to keep the password remembered by the device.

Xbox Live Moderate NAT on Hotspot/Tether

Is there a clear tutorial on setting the NAT to open on Xbox Live? I'm tethering off my Verizon 4G LTE phone.
Of course theres a way.
juryben said:
Is there a clear tutorial on setting the NAT to open on Xbox Live? I'm tethering off my Verizon 4G LTE phone.
Click to expand...
Click to collapse
I was never able to find one that was complete... through trial and error I found a solid usb method. Now my only problem is this POS LG Revolution with no man support or ROMs. Seems I have to tether through EasyTether to maintain a solid connection (anyone know why?) otherwise it poops out after a couple minutes randomly which sucks because I've had my best tether 4g speeds through 3 rarely talked about apps, Tether Pop-Up and Auto-Usb Tether and SVTP no idea why but they kick the crap out of PDANet, Clockwork Tether, EasyTether. With the auto enablers / widgets I get 18-40DN / 6-12UP MB/S on speedtest.net the only way my tethering speed came close to matching my true phone 4g speeds the most Ive ever seen from the others was 7mbs dn 3up thats with easytether. So first find a tethering method that works the fastest with a solid connection (you need it otherwise constant disconnects and probation waiting for matches).
Now share your connection via pc/mac network card/ethernet cable to a Router (it must support an NZB Server)'s internet port. Set your xbox up to be a set IP address mines 192.168.1.4. leave everything else blank except dns = google for phone, pc and xbox network settings. Then login to your router generally under WLAN Setup you'll find "Default DMZ Server" enter your Xbox IP address in fields. Check to make sure MTU Size is 1500 and NAT Filitering "Open". I disable SIP ALG too if optional. Check to make sure your connection from PC is being shared and used as gateway ect in your main status and thats it. Connect to router via wireless or ethernet (faster). DMZ basically creates a port server for the xbox-router any port the xbox wants open nzb opens it (was what I understood). If your still not getting your xbox to say Open NAT make sure ips match router DMZ and xbox (dhcp crap messes it up sometimes), start opening ports on the router, pc and android for xbox you can get list of ports for COD via google and portforward on android and complete firewall bypass on pc can help too. You can achieve OPEN by simply getting all ports necessary but DMZ method much easier. As far as I know you need a DMZ capable Router you cannot WiFi tether to xbox and get open or any other way without a router to my knowledge.
gigilie said:
I was never able to find one that was complete... through trial and error I found a solid usb method. Now my only problem is this POS LG Revolution with no man support or ROMs. Seems I have to tether through EasyTether to maintain a solid connection (anyone know why?) otherwise it poops out after a couple minutes randomly which sucks because I've had my best tether 4g speeds through 3 rarely talked about apps, Tether Pop-Up and Auto-Usb Tether and SVTP no idea why but they kick the crap out of PDANet, Clockwork Tether, EasyTether. With the auto enablers / widgets I get 18-40DN / 6-12UP MB/S on speedtest.net the only way my tethering speed came close to matching my true phone 4g speeds the most Ive ever seen from the others was 7mbs dn 3up thats with easytether. So first find a tethering method that works the fastest with a solid connection (you need it otherwise constant disconnects and probation waiting for matches).
Now share your connection via pc/mac network card/ethernet cable to a Router (it must support an NZB Server)'s internet port. Set your xbox up to be a set IP address mines 192.168.1.4. leave everything else blank except dns = google for phone, pc and xbox network settings. Then login to your router generally under WLAN Setup you'll find "Default DMZ Server" enter your Xbox IP address in fields. Check to make sure MTU Size is 1500 and NAT Filitering "Open". I disable SIP ALG too if optional. Check to make sure your connection from PC is being shared and used as gateway ect in your main status and thats it. Connect to router via wireless or ethernet (faster). DMZ basically creates a port server for the xbox-router any port the xbox wants open nzb opens it (was what I understood). If your still not getting your xbox to say Open NAT make sure ips match router DMZ and xbox (dhcp crap messes it up sometimes), start opening ports on the router, pc and android for xbox you can get list of ports for COD via google and portforward on android and complete firewall bypass on pc can help too. You can achieve OPEN by simply getting all ports necessary but DMZ method much easier. As far as I know you need a DMZ capable Router you cannot WiFi tether to xbox and get open or any other way without a router to my knowledge.
Click to expand...
Click to collapse
Thanks, I appreciate it! One question, is it possible without a router? Just bridging PC to Xbox?
When you're using this kind of a method, your phone provider is the NAT. You can't really get around it because they control it. Not you.
However many phone providers will let you pay extra for a public IP address and then you'll have an open NAT.
I've tried just about every possible method to grt open NAT through my phone with the wifi tether app.. PC has wireless adapter connected to my phone.. Etherney cable from LAN port to the routers modem plug.. Ethernet cable from router to ps3.. I can't login to my router to change any of the settings for some reason.. I have a Netgear and my web browser keeps saying it can't find the page..
Sent from my SPH-D710 using Tapatalk 2

New to VPN, need help if you have a momment

I have a simple home net using mostly windows vista and 7 computers, some printers, external hd servers for backup storage and cameras in a workgroup static ip setup behind an off the shelf router. i set one of the computers as the vpn server since i dont want to buy a dedicated hardware vpn in a vista ultimate machine thats on 24/7 anyway with an incomming server... with the correct ports forwarded from the router to the vpn host.
my remote vpn laptop connects to the vpn fine and can see the network resources, however, has no internet connection once the vpn is connected. do i have to set the host vpn computer to do some sort of its own dns assignments to the incomming connection? its set for dhcp so i dont know why it would assign a valid IP to an incomming but not any other info.
in other words, on my remote laptop, i can connect to a random wireless internet hotspot and have full internet access. I can then enable vpn and log in to my home network and see all the network resources, however if i try to use an internet browser, there appears to be no internet. if i disconnect the vpn, the internet resumes to work fine and obviously the vpn resources are no longer accessable.
what am i missing? under incomming connection properties general tab, "allow others to make private..." is checked, under users the correct user is selected along with "require all users to secure...", and under networking ipv4 "allow callers to access..." is checked, and assign ip auto using dhcp is checked so I would think it should be working fine at this point, however it doesn list anywhere a gateway or dns to assine to incomming connections, only ip's.
host vpn computer is vista ultimate with static ip behind a retail router also assigned a static ip via my home isp.
the remote laptop is running ubuntu 12. just for kicks and to rule out ubuntu causing some problem, i set my android phone up for vpn use via 4g network, and the same thing happens. connects vpn fine, has local resources, but loses internet.
i also was curious as to having a vpn log in for the existing user account on the vpn host machine... in other words, should i just add the username on the host computer as a vpn client, and log in vpn using those credentials? and will that even work if that account is logged in, or will i have to remember to log out when im on the road to use the vpn connection.
thanks all!

Sharing VPN connection via Mac to Fire TV running KODI

So the title is pretty in depth, but I am a newbie to VPNs and need some help.
I live in NJ, big NY Rangers fan and I currently do not have an satellite or cable service so I rely on my psvue subscription and amazon fire tv which has Kodi on it.
I created a VPN with ExpressVPN, downloaded their software app on my mac and have the VPN up and running (on my mac). I don't have a compatible router to run the VPN through, so I read that I can use my mac to share the VPN to the amazon fire tv. How do I go about successfully doing this? ExpressVPN said my Mac has to be hardwired via ethernet to my existing router, is this true?
I also wanted to know that if I successfully get the amazon fire tv connected to my VPN connection, will my kodi app run off of that connected VPN or do I have to manually configure the VPN via Kodi as well? I am thinking that having the VPN connected on the Fire stick will be sufficient enough for Kodi.
T
https://play.google.com/store/apps/details?id=de.blinkt.openvpn
If you pay for a vpn service that doesnt allow you to use an openvpn client, stop paying for that service..
Using the mac doesnt make that much sense, since the firetv can connect to vpn services on its own. If you WANT to use the mac you would connect it to the internet via lan and create a hotspot on the wlan side on which the firetv then connects. So look for mac hotspot programs if you absolutely want to do it that way.
The app above works witha ll apps as soon as it connects, so no extra setup in kodi needed. Successfully tested under 5.0.5.
harlekinwashere said:
https://play.google.com/store/apps/details?id=de.blinkt.openvpn
If you pay for a vpn service that doesnt allow you to use an openvpn client, stop paying for that service..
Using the mac doesnt make that much sense, since the firetv can connect to vpn services on its own. If you WANT to use the mac you would connect it to the internet via lan and create a hotspot on the wlan side on which the firetv then connects. So look for mac hotspot programs if you absolutely want to do it that way.
The app above works witha ll apps as soon as it connects, so no extra setup in kodi needed. Successfully tested under 5.0.5.
Click to expand...
Click to collapse
Well How would I know if ExpressVPN allows me to use an openvpn client? I thought the fire tv couldnt connect to vpn on its on so that is why I was having my mac come into play, but it is getting a little too complicated for me. So I download this app from the google play store via my android device? If you can give me some more direction I would greatly appreciate all of your help!
Edit: I can use my android device and sideload the app via AGK Fire...learning a little more each second
You should be able to setup a VPN through a Router, even the crappy Ones issued by your ISP.
Ichijoe said:
You should be able to setup a VPN through a Router, even the crappy Ones issued by your ISP.
Click to expand...
Click to collapse
hmmm I will have to look into that with my ISP router, thanks
I know how much you all love reddit QA culture - but
Using a VPN client on the device itself i the best way to realize this.
Setting up a VPN on your router is a worse way to realize this, mostly favored by people that read it once, and never tried it. Its only viable if your router supports selective tunneling, so you can tunnel the traffic from one ip through your vpn, but not from others. Which is only possible on newer dd-wrt or equivalent routers, because on older build one of the necessary commands broke - setting up your whole internet to go through the vpn is like paying for worse internet.
The router most likely is the slowest piece of equipment in your chain, so switching it off and on again is a chore - believe me I tried to make it work for three days. Interfacing with the router isnt great either.
So yes, I bet 90% of the people advising you to use a VPN connection on your router, have just read it somewhere ad thought it would be great to repeat it in every context.
Also ISP router - haha, yeah - good luck.
The only way VPN on a rounter makes sense is if you are on on of the _recent_ open source routers, and can spend a day to get either openvpn or pptp running there (no documentation from most VPN vendors) and selective tunneling to the Fire TV - or if by some really strange luck, have bought a commercial router that has VPN tunneling to one specific device built in.
Imho bad idea, even worse in practice (routers UI to switch -), but the favorite of the collective knowledge crowd that hangs out on reddit and repeats what people before them have said. Because they just went with what sounded right.
Does your VPN provider support Open VPN connections? Well, shouldnt that be something that you ask yourself before choosing a VPN provider? Also - dont ask the internet, if your provider supports it, ask your provider - again, you are paying the provider, so use its support infrastructure to ask the important questions.
The issue with the "what the most eazy" mindset, when it comes to VPNs or interoperating devices, is that you have to rely on open standards (like Open VPN) and not brand, or best vendor app. Its a strange concept, but actually knowing about stuff, before going into a monthly payment plan - is actually a good thing...
cheers h.

Resources