Discussion:
[Arm-netbook] routing vpns over ssh
Luke Kenneth Casson Leighton
2016-10-10 06:26:29 UTC
Permalink
i can't quite believe that i'm having to route my vpn access over an
ssh tunnel in order to then put HTTP proxy over the VPN in order to
get frickin internet access to my email and anything at all.

the IP address of my server has been blocked *not* by the china
government but by the cisco equipment where i'm currently located...

... which is in the lobby of allwinner's headquarters in zhuhai :)

well done cisco! :)

_______________________________________________
arm-netbook mailing list arm-***@lists.phcomp.co.uk
http://lists.phcomp.co.uk/mailman/listinfo/arm-netbook
Send large attachments to arm-***@files.ph
joem
2016-10-10 12:50:17 UTC
Permalink
Post by Luke Kenneth Casson Leighton
i can't quite believe that i'm having to route my vpn access over an
ssh tunnel in order to then put HTTP proxy over the VPN in order to
get frickin internet access to my email and anything at all.
the IP address of my server has been blocked *not* by the china
government but by the cisco equipment where i'm currently located...
... which is in the lobby of allwinner's headquarters in zhuhai :)
well done cisco! :)
Careful --- the great firewall of CN does not like VPNs and ssh tunnels
and would block the IP address which means Allwinner's IP addresss if it
keeps repeating the problems. So you can imagine the engineers or the
ISP just turned it all off to help prevent a future problem. You can pop
into HK for all your internet for a day, or get all your files
transferred to SSD and carry one of those around.
Also, instead of ssh, try ftp and telnet, and protocols over port 80, it
may pose fewer problems as its not fully encrypted communications .

_______________________________________________
arm-netbook mailing list arm-***@lists.phcomp.co.uk
http://lists.phcomp.co.uk/mailman/listinfo/arm-netbook
Send large attac
joem
2016-10-10 13:14:25 UTC
Permalink
Post by joem
Post by Luke Kenneth Casson Leighton
i can't quite believe that i'm having to route my vpn access over an
ssh tunnel in order to then put HTTP proxy over the VPN in order to
get frickin internet access to my email and anything at all.
the IP address of my server has been blocked *not* by the china
government but by the cisco equipment where i'm currently located...
... which is in the lobby of allwinner's headquarters in zhuhai :)
well done cisco! :)
Careful --- the great firewall of CN does not like VPNs and ssh tunnels
and would block the IP address which means Allwinner's IP addresss if it
keeps repeating the problems. So you can imagine the engineers or the
ISP just turned it all off to help prevent a future problem. You can pop
into HK for all your internet for a day, or get all your files
transferred to SSD and carry one of those around.
Also, instead of ssh, try ftp and telnet, and protocols over port 80, it
may pose fewer problems as its not fully encrypted communications .
Just another thought - I remember using ssh over a different port number
than 22. That worked. Then I used rsync with compression to transfer
files because it was patient and retries and compresses.
Try that from hotel.

_______________________________________________
arm-netbook mailing list arm-***@lists.phcomp.co.uk
http://lists.phcomp.co.uk/mailman/listinfo/arm-netbook
Send large attachments to arm-***@file
Luke Kenneth Casson Leighton
2016-10-10 13:24:42 UTC
Permalink
already running on port 922. allwinner's own engineers use vpns a lot
because they need access to resources that normally aren't accessible,
so the situation's a bit different. running over common ports, great
idea. thx joe.
Post by joem
Post by joem
Post by Luke Kenneth Casson Leighton
i can't quite believe that i'm having to route my vpn access over an
ssh tunnel in order to then put HTTP proxy over the VPN in order to
get frickin internet access to my email and anything at all.
the IP address of my server has been blocked *not* by the china
government but by the cisco equipment where i'm currently located...
... which is in the lobby of allwinner's headquarters in zhuhai :)
well done cisco! :)
Careful --- the great firewall of CN does not like VPNs and ssh tunnels
and would block the IP address which means Allwinner's IP addresss if it
keeps repeating the problems. So you can imagine the engineers or the
ISP just turned it all off to help prevent a future problem. You can pop
into HK for all your internet for a day, or get all your files
transferred to SSD and carry one of those around.
Also, instead of ssh, try ftp and telnet, and protocols over port 80, it
may pose fewer problems as its not fully encrypted communications .
Just another thought - I remember using ssh over a different port number
than 22. That worked. Then I used rsync with compression to transfer
files because it was patient and retries and compresses.
Try that from hotel.
_______________________________________________
http://lists.phcomp.co.uk/mailman/listinfo/arm-netbook
_______________________________________________
arm-netbook mailing list arm-***@lists.phcomp.co.uk
http://lists.phcomp.co.uk/mailman/listinfo/arm-netbook
Send large attachments to arm-***@files
Stefan Monnier
2016-10-12 12:58:51 UTC
Permalink
Post by Luke Kenneth Casson Leighton
the IP address of my server has been blocked *not* by the china
government but by the cisco equipment where i'm currently located...
Hmm... I must say that I haven't spent much time fiddling with it, but
when I was in Beijing last summer access to my OpenVPN server (sharing
port with an https server) worked just fine. The only tricky part was
that I needed to tunnel the DNS requests through the VPN as well
(because apparently the local DNS would give bogus IP addresses for some
services such as duckduckgo.com, IIRC).


Stefan


_______________________________________________
arm-netbook mailing list arm-***@lists.phcomp.co.uk
http://lists.phcomp.co.uk/mailman/listinfo/arm-netbook
Send large attachments to arm-netb

Loading...