Jump to content
Not connected, Your IP: 3.144.41.252
Sign in to follow this  
cjc2040

AirVPN doesn't work on very restrictive wifi

Recommended Posts

Hello, so just a preface. I'm a bit of a noob when it comes to this stuff. I can wrap my head around most of it, but I'm not super adept in networking.

 

So basically I'm on a public network that filters pretty much everything but a few websites. Most of the websites that are blocked come up with an SSL error in chrome that you can't avoid. The rest that don't hit this error are just hit with a screen with the firewall stating that it is denying access. Another thing about this network is it forces you to use it's DNS by keeping it on automatic within windows ipv4 configuration. It just stops working when you try using any other DNS such as Google's.

 

Now, a few months ago, AirVPN was working just fine, but one day, it just stopped. Nothing worked. I have tried every protocol and every combination that came to mind, including, "check if tunnel works", turning off windows firewall, and stuff like that. Most protocols end with a log that looks similar to this:

 

. 2017.09.01 12:00:33 - OpenVPN > TCP/UDP: Preserving recently used remote address: [AF_INET]46.21.151.106:53
. 2017.09.01 12:00:33 - OpenVPN > Socket Buffers: R=[65536->262144] S=[65536->262144]
. 2017.09.01 12:00:33 - OpenVPN > UDP link local: (not bound)
. 2017.09.01 12:00:33 - OpenVPN > UDP link remote: [AF_INET]46.21.151.106:53
. 2017.09.01 12:00:33 - OpenVPN > [uNDEF] Inactivity timeout (--ping-exit), exiting
. 2017.09.01 12:00:33 - OpenVPN > SIGTERM received, sending exit notification to peer
. 2017.09.01 12:00:33 - OpenVPN > SIGTERM[soft,exit-with-notification] received, process exiting
 
I think the issue with the network is that pretty much every port is blocked. Using Microsoft's "Port Query" tool, I was able to find out that there are only a couple ports that are set as "Listening"; those being: 445, and 135.
 
I don't know if it is possible to run Air on a network this restrictive, but I would imagine it would under certain circumstances for one reason. Psiphon works. I know it's a proxy but I would imagine there are some similarities between it and AirVPN.
 
Anyways, I would sincerely appreciate if anyone could help me with this. 

Share this post


Link to post

 

Hello, so just a preface. I'm a bit of a noob when it comes to this stuff. I can wrap my head around most of it, but I'm not super adept in networking.

 

So basically I'm on a public network that filters pretty much everything but a few websites. Most of the websites that are blocked come up with an SSL error in chrome that you can't avoid. The rest that don't hit this error are just hit with a screen with the firewall stating that it is denying access. Another thing about this network is it forces you to use it's DNS by keeping it on automatic within windows ipv4 configuration. It just stops working when you try using any other DNS such as Google's.

 

Now, a few months ago, AirVPN was working just fine, but one day, it just stopped. Nothing worked. I have tried every protocol and every combination that came to mind, including, "check if tunnel works", turning off windows firewall, and stuff like that. Most protocols end with a log that looks similar to this:

 

. 2017.09.01 12:00:33 - OpenVPN > TCP/UDP: Preserving recently used remote address: [AF_INET]46.21.151.106:53
. 2017.09.01 12:00:33 - OpenVPN > Socket Buffers: R=[65536->262144] S=[65536->262144]
. 2017.09.01 12:00:33 - OpenVPN > UDP link local: (not bound)
. 2017.09.01 12:00:33 - OpenVPN > UDP link remote: [AF_INET]46.21.151.106:53
. 2017.09.01 12:00:33 - OpenVPN > [uNDEF] Inactivity timeout (--ping-exit), exiting
. 2017.09.01 12:00:33 - OpenVPN > SIGTERM received, sending exit notification to peer
. 2017.09.01 12:00:33 - OpenVPN > SIGTERM[soft,exit-with-notification] received, process exiting
 
I think the issue with the network is that pretty much every port is blocked. Using Microsoft's "Port Query" tool, I was able to find out that there are only a couple ports that are set as "Listening"; those being: 445, and 135.
 
I don't know if it is possible to run Air on a network this restrictive, but I would imagine it would under certain circumstances for one reason. Psiphon works. I know it's a proxy but I would imagine there are some similarities between it and AirVPN.
 
Anyways, I would sincerely appreciate if anyone could help me with this. 

May i ask what your logs look like using SSL and SSH tunnels?

 

If those don't work I'm afraid you will have to attempt resorting to VPN over Tor.

Share this post


Link to post

SSL: 

I 2017.09.05 11:16:20 - Checking authorization ...
! 2017.09.05 11:16:20 - Connecting to Heze (United States, Fremont, California)
. 2017.09.05 11:16:21 - SSL > 2017.09.05 11:16:20 LOG5[ui]: stunnel 5.40 on x86-pc-mingw32-gnu platform
. 2017.09.05 11:16:21 - SSL > 2017.09.05 11:16:20 LOG5[ui]: Compiled/running with OpenSSL 1.0.2k  26 Jan 2017
. 2017.09.05 11:16:21 - SSL > 2017.09.05 11:16:20 LOG5[ui]: Threading:WIN32 Sockets:SELECT,IPv6 TLS:ENGINE,OCSP,PSK,SNI
. 2017.09.05 11:16:21 - SSL > 2017.09.05 11:16:20 LOG5[ui]: Reading configuration from file C:\Users\...\AppData\Local\AirVPN\b2e96aa9c166c500ddbecd9176896ea1b0d0adf6ba6b599424f9b0cd71ab9a18.tmp.ssl
. 2017.09.05 11:16:21 - SSL > 2017.09.05 11:16:20 LOG5[ui]: UTF-8 byte order mark not detected
. 2017.09.05 11:16:21 - SSL > 2017.09.05 11:16:21 LOG6[ui]: Initializing service [openvpn]
. 2017.09.05 11:16:21 - SSL > 2017.09.05 11:16:21 LOG4[ui]: Service [openvpn] needs authentication to prevent MITM attacks
. 2017.09.05 11:16:21 - SSL > 2017.09.05 11:16:21 LOG5[ui]: Configuration successful
. 2017.09.05 11:16:21 - OpenVPN > Options error: --nobind doesn't make sense unless used with --remote
. 2017.09.05 11:16:21 - OpenVPN > Use --help for more information.
 
 
SSH: 
I 2017.09.05 11:12:07 - Session starting.
. 2017.09.05 11:12:07 - IPv6 disabled with packet filtering.
I 2017.09.05 11:12:07 - Checking authorization ...
! 2017.09.05 11:12:08 - Connecting to Heze (United States, Fremont, California)
. 2017.09.05 11:12:08 - SSH > Looking up host "46.21.151.106"
. 2017.09.05 11:12:08 - SSH > Connecting to 46.21.151.106 port 22
. 2017.09.05 11:12:08 - SSH > We claim version: SSH-2.0-PuTTY_Release_0.67
. 2017.09.05 11:12:09 - SSH > Failed to connect to 46.21.151.106: Network error: Connection refused
. 2017.09.05 11:12:09 - SSH > Network error: Connection refused
. 2017.09.05 11:12:09 - SSH > FATAL ERROR: Network error: Connection refused
! 2017.09.05 11:12:09 - Disconnecting
. 2017.09.05 11:12:09 - Connection terminated.
I 2017.09.05 11:12:11 - Cancel requested.
. 2017.09.05 11:12:11 - IPv6 restored with packet filtering.
! 2017.09.05 11:12:11 - Session terminated.
 

Share this post


Link to post

Update: If I run the SSL script without Eddie, aka with Command prompt I get an error about a self signed certificate in the certificate chain

Share this post


Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
  • Security Check
    Play CAPTCHA Audio
    Refresh Image
Sign in to follow this  

×
×
  • Create New...