<font face="tahoma,sans-serif"><br></font><br><div class="gmail_quote">2011/8/24 Marko Vojinovic <span dir="ltr"><<a href="mailto:vvmarko@gmail.com">vvmarko@gmail.com</a>></span><br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<div class="im">On Wednesday 24 August 2011 17:17:15 Manuel Escudero wrote:<br>
> 2011/8/24 Timothy Murphy <<a href="mailto:gayleard@eircom.net">gayleard@eircom.net</a>><br>
> > Manuel Escudero wrote:<br>
> > >> I'm puzzled by this thread.<br>
> > >> It doesn't seem to me to be too difficult to set up an OpenVPN server,<br>
> > >> following the instructions in /usr/share/openvpn/easy-rsa/2.0/ .<br>
> > >><br>
> > >> Or are you all trying to do something else?<br>
<br>
</div>Sorry to drop in on this thread, but it seems that there is some<br>
misunderstanding here... ;-)<br>
<br>
Yes, apparently Manuel is trying to do something else, which has nothing to do<br>
with creating a VPN on Fedora. He just expressed himself poorly. Read below.<br>
<div class="im"><br>
> > > The idea was to get an easy solution to mount a personal VPN<br>
> > > in Linux using an external "pre-arranged" solution such as those<br>
> > > you might use on windows or mac, (HotspotShield/TunnelBear).<br>
<br>
</div>As far as I looked at the HotspotShield and TunnelBear websites, they<br>
basically say:<br>
<br>
<quote><br>
Q) What is TunnelBear?<br>
A) TunnelBear is the world’s easiest to use consumer VPN software that<br>
securely “tunnels” your internet connection to locations around the world.<br>
<br>
Q) How does TunnelBear work?<br>
A) TunnelBear creates a secure, encrypted connection between your computer and<br>
a server in the host country you want to connect to. This both protects your<br>
privacy allows you to simulate the internet experience from another country.<br>
<br>
Hotspot Shield:<br>
* Secure your web session, data, online shopping, and personal information<br>
online with HTTPS encryption.<br>
* Protect yourself from identity theft online.<br>
* Hide your IP address for your privacy online.<br>
* Access all content privately without censorship; bypass firewalls.<br>
* Protect yourself from snoopers at Wi-Fi hotspots, hotels, airports,<br>
corporate offices.<br>
</quote><br>
<br>
So it seems to me that TunnelBear and HotspotShield are commercial<br>
*proxy* *servers*, which clients use by connecting via the VPN.<br>
<div class="im"><br>
> > As far as I can see, Hotspot Shield and Tunnel Bear<br>
> > are both running VPN servers, on a free/commercial basis,<br>
> > and if you subscribe to them you can run a VPN client<br>
> > which communicates with or through them.<br>
> > Or have I got that wrong?<br>
<br>
</div>You got it right. You get logged on their VPN, and they "guarantee" to clients<br>
anonymous access to the Internet, using their server as a proxy. The VPN is<br>
used in order to provide encrypted connection between the server and the<br>
client, and in addition to provide A&A via pay-for certificates.<br>
<div class="im"><br>
> > > See, Win/Mac users don't mount their own VPN servers when they<br>
> > > wanna use VPN because of those apps, I found a solution like<br>
> > > that but for Linux, and that was what I was looking for in the first<br>
> > > place.<br>
<br>
</div>This part is a bit confusing. It seems that Manuel doesn't make a distinction<br>
between a VPN and these commercial proxy services. Win/Mac users that he<br>
speaks about do not create a VPN, they are just clients to the commercial VPN.<br>
So they do not need to set up any VPN server or something similar.<br>
<br>
AFAIK, if you sign up for this service and get a certificate, you should not<br>
need any special software to connect to the HS/TB VPN-s. NetworkManager should<br>
be able to connect to them automatically, if configured to use the appropriate<br>
certificates. So on Linux at least, no additional software should be necessary,<br>
unless they are doing something weird and incompatible. As for Windows and<br>
Mac, I don't know, but if anything needs to be installed, it is a VPN client<br>
of some kind. Not the server.<br>
<div class="im"><br>
> The thing is, in Win & Mac, users just Download an app such as TunnelBear<br>
> for example<br>
> and install it with a "Next>Next>Next" tool, then just click ENABLE and<br>
> they're "magically"<br>
> browsing through VPN connection...<br>
<br>
</div>The "Next>Next>Next" tool just installs VPN client software on Win/Mac, and<br>
sets it up automatically for use with HS/TB networks.<br>
<div class="im"><br>
> They don't need to setup a private<br>
> server, then parse the<br>
> keys and the certificates, then install all the things, deal with config<br>
> files and so on...<br>
<br>
</div>These are steps you need to do when you want to create *your* *own* VPN, not<br>
to use somebody else's network. Apples and oranges. :-)<br>
<div class="im"><br>
> I commited myself to the simple duty of finding something similar but for<br>
> linux and<br>
> Hostizzle (with a little help from other tools) seem to be the closest<br>
> alternative<br>
> to such software.<br>
<br>
</div>Hostizzle is just another commercial proxy, in line with Hotspot Shield and<br>
TunnelBear. It's not a software, it's an online service. It uses VPN (in<br>
particular OpenVPN implementation) in order to provide its service.<br>
<br>
> More clear? :)<br>
<br>
The Hostizzle FAQ is very informative regarding what this is all about:<br>
<br>
<a href="http://hostizzle.com/faq/" target="_blank">http://hostizzle.com/faq/</a><br>
<br>
In a nutshell, you sign up to use their VPN for all your internet traffic, using<br>
their server as a gateway. This avoids various firewalls, insecure connections,<br>
blocked ports, etc., at the expense of using their gateway.<br>
<br>
The VPN itself has nothing to do with this. It is just a backend technology<br>
that provides you a convenient way to use their server as a gateway to the<br>
Internet.<br>
<br>
All in all, the title of this thread is completely misleading. You (the OP)<br>
don't actually want to set up your own VPN, you want to use this kind od<br>
public proxy service, and need to set up a VPN client because this is the way<br>
to communicate with that public proxy. Please don't mix these two things. :-)<br>
<br>
VPN stands for a "Virtual Private Network", and basically represents an<br>
emulation of a bunch of (virtual) ethernet cards and appropriate (virtual)<br>
cables and switches, in order to create a (virtual) LAN over a physically<br>
distributed set of hosts. This has absolutely nothing to do with the "public<br>
proxy" service like Hostizzle, regardless of the fact that that VPN is used as<br>
a backend means of communication between Hostizzle and yourself.<br>
<br>
I hope this clears up a few things for everybody, especially for the OP. ;-)<br>
<br>
HTH, :-)<br>
Marko<br>
<font color="#888888"><br>
--<br>
</font><div><div></div><div class="h5">users mailing list<br>
<a href="mailto:users@lists.fedoraproject.org">users@lists.fedoraproject.org</a><br>
To unsubscribe or change subscription options:<br>
<a href="https://admin.fedoraproject.org/mailman/listinfo/users" target="_blank">https://admin.fedoraproject.org/mailman/listinfo/users</a><br>
Guidelines: <a href="http://fedoraproject.org/wiki/Mailing_list_guidelines" target="_blank">http://fedoraproject.org/wiki/Mailing_list_guidelines</a><br>
</div></div></blockquote></div><br><br><div>Yep, what marko just said is most accurate about the technical<div>aspect of the whole thing... in one simple sentence: HSS, TunnelBear</div><div><span class="Apple-style-span" style="font-family: arial, sans-serif; font-size: 13px; background-color: rgb(255, 255, 255); ">Hostizzle, "and friends" are just services where someone mounts a VPN</span></div>
<div><font class="Apple-style-span" face="arial, sans-serif">and then simply share with the people some ways to access it, via free<br clear="all"></font></div><div><div><font class="Apple-style-span" face="arial, sans-serif">or paid OpenVPN certificate packs wich contain a "ovpn" file to use in</font></div>
<div>the configuration via your native networking client (such as networkmanager)...</div><div><font class="Apple-style-span" face="arial, sans-serif"><br></font></div><div><font class="Apple-style-span" face="arial, sans-serif">Win/Mac solutions are "a little more packed"; In linux it requires some more</font></div>
<div><font class="Apple-style-span" face="arial, sans-serif">"setup steps" to work, but esentially it's the same.</font></div><div><font class="Apple-style-span" face="arial, sans-serif"><br></font></div><div>
<font class="Apple-style-span" face="arial, sans-serif">So, yep I wasn't talking about CREATING my own VPN but finding</font></div><div><font class="Apple-style-span" face="arial, sans-serif">a service that let me connect to a "pre-mounted" VPN as I perfectly said in the first</font></div>
<div><font class="Apple-style-span" face="arial, sans-serif">message I sent, (and nobody answered that), so I shared the solution I found</font></div><div><font class="Apple-style-span" face="arial, sans-serif">for the actual question. </font></div>
<div><font class="Apple-style-span" face="arial, sans-serif"><br></font></div><div><font class="Apple-style-span" face="arial, sans-serif">C'ya! :)</font></div><div><font class="Apple-style-span" face="arial, sans-serif"><br>
</font></div>-- <br>Manuel Escudero<div><div>Linux User #509052<br>Twitter: <a href="http://twitter.com/Jmlevick" target="_blank">@Jmlevick</a><br>Blogger: <a href="http://xenodesystems.blogspot.com/" target="_blank">Blog Xenode</a></div>
<div>PGP/GnuPG: E2F5 12FA E1C3 FA58 CF15 8481 B77B 00CA C1E1 0FA7</div></div>Xenode Systems - <a href="http://www.xenodesystems.com/" target="_blank">xenodesystems.com</a> - "Conéctate a Tu Mundo"<br>
</div></div>