Join us on Discord! We now have an official Discord server for OpenFLIXR: https://discord.gg/PcCErTQ , these forums will continue to operate as normal.

VPN Support - looking for input

Well it seems VPN support is a biggie, so what I would like to know, how do you currently use VPN.
From what OS, what application, what provider, how did you set it up, etc.

Looking for more input because as of right now, I don't see the problem because OpenVPN is installed and you can setup a connection from Webmin.
But that is probably because I don't use VPN and I am proficient with all the software used in OpenFLIXR :)

«1

Comments

  • Prior to OpenFLIXR I was using IPVanish via OpenVPN on a Ubuntu 16.04 box, VERY VERY similar to OpenFLIXR. I transferred my OpenVPN configs files over to OpenFLIXR and it doesn't route the way my non-virtual Ubuntu 16.04 would, even with a bridged setup. Webmin wasn't helpful to me at all, seems to be more of a server side tool rather than client but maybe I'm wrong about that. I've tried to configure from my router but I can't seem to port forward to OpenFLIXR after I get it going. Very frustrating and I really don't understand why my physical Ubuntu 16.04 OpenVPN setup wouldn't doesn't act the same way on OpenFLIXR using a bridged adapter.

  • Haven't looked myself yet, but do you know if they give away trial accounts?
    It would make it a lot easier to troubleshoot and see what is needed.

    From my short google search, it seems that all VPN providers let you download preconfigured vpn files. Is this common, is this something I can "expect" how users would make use of it?

    I'm trying to understand how people make a connection. How did you do it from your ubuntu box. Is it ubuntu desktop, if so, what program did you use. Just gathering info :)

  • Wow. Ok I'm dumb. I left out my startup/shutdown scripts which did some routing.

    Here's the magic that was missing...

    ipvanish.conf
    ...
    up /etc/openvpn/vpn-up.sh
    down /etc/openvpn/vpn-down.sh

    vpn-up.sh
    ...

    ...
    # add routing to retain remote access, use either the manual variables or automatic ones not both
    MAINIP=10.0.0.10
    GATEWAYIP=10.0.0.1
    SUBNET=10.0.0.0/24
    
    #automatic IP finding
    #MAINIP=$(ip route | awk 'NR==3{print $9}')
    #GATEWAYIP=$(ip route | awk 'NR==1{print $3}')
    #SUBNET=$(ip route | awk 'NR==2{print $1}')
    
    ip rule add from $MAINIP table 128
    ip route add table 128 to $SUBNET dev p2p1
    ip route add table 128 default via $GATEWAYIP
    
  • edited August 2016

    I was also using this script to bind Transmission to the VPN IP as to be sure no torrents ran through my normal network. Also an important feature but needs to be adopted for qbittorrent (although I may have to switch back to Transmission, the flacko web interface is killing me). I thought I used instructions from htpcbeginners but I haven't managed to find the article.

    EDIT: Here's the guide I originally used. http://www.htpcguides.com/remote-access-transmission-torrent-behind-vpn-linux/

    ExpressVPN I believe has a free trial. IPVanish has a trial you just have to pay up front then get a refund.

  • I think the above solution works and I think I found the setting to bind qbit to tun0. kill switch when tun0 goes down in the above documentation. I think there is a setting in plex for it to talk to the cloud, I'll do some more testing there

  • I've been using Private Internet Access VPN with a DelugeVPN Docker and a SabVPN Docker on unRaid. Those containers transmit all data for each container through the designated VPN. It doesn't have to be PIA, I believe any OpenVPN service would work.

    What I envision for VPN support in OpenFlixr is something similar. During setup you provide your VPN information (server, login/password, etc.) and then all of your downloaders (Usenet/Torrent) data does through the configured VPN.

    Either way, love your product, thank you!

  • You're the first giving me concrete information. I think this will be a good starting point. Please keep the info conning. I need it cause I'm a newbie regarding VPN :)

  • edited August 2016

    The above guide I linked to works but qbittorrent binds to any adapter if the specified adapter isn't available. Not cool. Monit script for qbittorrent should be modified to stop/start openvpn and then scripts within openvpn start/stop the qbittorrent to ensure you are torrenting when the vpn is up and it stops as soon as you lose the Vpn connection

  • edited August 2016

    i am using something similar just to route traffic from transmission through the vpn. i use purevpn.
    i am using the scripts and setup from here: http://www.htpcguides.com/remote-access-transmission-torrent-behind-vpn-linux/
    I havent tried to setup this set of scripts and stuff yet with openflixr

    here is and updated way to split-tunnel traffic with openvpn from the same site : http://www.htpcguides.com/configure-transmission-for-vpn-split-tunneling-on-ubuntu-14-x/

  • the things a user would need to provide would be:
    LOGIN
    PASSWORD
    OpenVPN connection config file like : Sweden.ovpn
    so it would work with any provider that supports openvpn and distributes these files

  • and heres a guide to auto reconnect openvpn if connection drops using monit: http://www.htpcguides.com/autoreconnect-to-vpn-service-using-monit-linux/

  • I use BTGUARD on my synology, which uses pptp rather then ovpn file. Will that be supported?
    I can use ovpn with another provider if needed though.

  • Let's see if I can make it work at all, ok :)

    Please keep that information coming.

  • I was using Transblocker on Synology NAS with Transmission for OpenVPN tunnel support (its recently broken). It is just a simple script that initiates the VPN connection and then changes the firewall and transmission config to route traffic over it - obviously it's only BT traffic that needs to flow over the VPN.

  • Thus far I see the following trend for a first release:

    • OpenVPN
    • .ovpn files
    • Only torrent traffic over tunnel
    • Username / password

    I'm sure there will be a 1000 possible use cases, but I think these are the basics needed.
    When the temperatures drop and I can think straight again, I'll see if I can create a test setup :)

  • +1 for OpenVPN (I use PIA too).
    I use with a delugeVPN Docker build, dont currently use with SAB though.
  • fysmd said:
    +1 for OpenVPN (I use PIA too).
    I use with a delugeVPN Docker build, dont currently use with SAB though.
    +1
    I also do the same.
  • I just added a VPN to my OpenFLIXR test VM.  Using OpenVPN with https://vpnme.com.  Rather than trying to get everything to bind to a single adapter, I set up iptables rules to only allow access to the internet over the VPN.  If the VPN happens to drop, nothing leaks.  I also set up rules to allow systems on my local network to access the web UI and ssh.
  • edited September 2016
    @sduensin ;
    Your configuration should work for a lot of users; but some of those users myself included get lost when things start to involve binding ports and using IP tables.

    Do you know anywhere there might be a guide about setting up such rules with openvpn in Linux?
  • This is basically the setup I came up with, but in a nicer format than me just pasting my config in here.  :-)


    http://joelslowik.blogspot.com/2013/05/setup-iptables-for-vpn-and-local.html
  • I haven't tried this yet but I believe this is more of what we are looking for. Split tunneling. It allows us to still connect to the web at full speed but keep our torrent traffic across a VPN. Htpcguides has a tutorial to set up the tunneling and use deluge as the download client part 1 is herehttp://www.htpcguides.com/force-torrent-traffic-vpn-split-tunnel-ubuntu-14-04/ and part 2 is here http://www.htpcguides.com/install-configure-deluge-vpn-split-tunneling-ubuntu-14-x/
  • I haven't tried this yet but I believe this is more of what we are looking for. Split tunneling. It allows us to still connect to the web at full speed but keep our torrent traffic across a VPN. Htpcguides has a tutorial to set up the tunneling and use deluge as the download client part 1 is herehttp://www.htpcguides.com/force-torrent-traffic-vpn-split-tunnel-ubuntu-14-04/ and part 2 is here http://www.htpcguides.com/install-configure-deluge-vpn-split-tunneling-ubuntu-14-x/
    I completely second this.  Torrent traffic is really the only traffic that would need to go over the VPN.  This feature is the only thing preventing me from using OpenFlixr right now.
  • I'd be happy to provide you with PIA login credentials if you wish to test things out.
  • edited September 2016
    Can't say i read the whole thread but I did do a CTRL+F for proxy and saw no mention of proxy'd torrent traffic. I did like that I see mention of Split tunneling from HtpcGuides, which is cool and I like to have the option, but I guess i dont see why users would not simply use a proxy on the torrent client ala PIA proxy settings: https://goo.gl/eEI7jz I use those settings and have never had an issue with my IP leaking via DNS etc...
  • reason why is proxy does not prevent your isp from seeing the connections and protocols used. I used a proxy and still received emails. Haven't received a single one using a vpn
  • I agree with the proxy not stopping detection. i tried both VPN and Proxy for torrents; and i've gotten emails using both. i suspect the reason i still get them on VPN where most users don't might be how my VPN is setup. Till i can set it up like the above mentioned posts, i will likely continue getting emails every once and a while. 
  • * Only torrent traffic over tunnel

    If at all possible, can that be extended to newsgroup traffic as well please?
  • sduensin said:
    This is basically the setup I came up with, but in a nicer format than me just pasting my config in here.  :-)


    http://joelslowik.blogspot.com/2013/05/setup-iptables-for-vpn-and-local.html
    @sduensin do you have it working with the exact rules from this post?

    When I add them I can no longer ssh to openflixr (virtualbox on win10 host) from another machine (win10) in my local network. All my local network IPs are between 192.168.1.2 and 192.168.1.254, so I should be good to go with 192.168.1.0/16 or even 192.168.1.0/24 if I understand correctly, but it does not work.

    The strange thing is that if I replace 192.168.1.0/24 by a single IP address from my local network, say 192.168.1.15, then I am able to ssh from the corresponding machine. Am I using the CIDR notation incorrectly?

    Thanks in advance for any advice.
  • Almost a year after MediaJunkie's first VPN RFC, I'm wondering if people are actually using OpenFLIXR with VPN?
    @sduensin - are you still running as per your post?
    @edan - were you able to fix your issues?

    I'm currently running VirtualBox on OMV with two separate VMs, one (without VPN) for "pushing" and one (with VPN) for "pulling", but OpenFLIXR looks super-interesting, as long as I can configure the torrent client with VPN.
  • i am not using VPN in openflixr. i can not get it working. Im using VPN on a separate VM for my intended functions for it. everything else openflixr offers i do use when i dont need a VPN for it. 
Sign In or Register to comment.