Back in the free world I purchased a lifetime-package of proXPN and tested it quite successfully under Linux.
Now I'm in Iran and everything fails. We seem to use ITC as ISP - which is the governmental provider and probably blocks any connections of "not certified" sources.
The Android App of proXPN fails to load with the message
Can't register device token. Please make sure you have an internet connection and try again
A friend of mine has an iPhone and uses the app OpenDoor which is seemingly not available under Android. Using this method works for him. I just got the OpenVPN Connect - but it refuses the config-files of ProXPN.
As there is no official Linux package for proXPN I'm using the ProXPN OpenVPN Bash Client.
But I can't use the nm-applets VPN-Configuration proxpn. due to the error:
unknown PPTP file extension
Also openvpn itself doesn't want to "eat" my file:
qohelet@Iran:/usr/local/bin$ sudo openvpn --config proxpn.ovpn Options error: --nobind doesn't make sense unless used with --remote
The file itself looks like:
# Conf from ProXPN Mac OS X 4.0.2 package contents # Modified and commented where appropriate and necessary. client dev tun proto tcp # Default configuration is to keep trying forever, we bail after 30 seconds resolv-retry 30 nobind persist-key persist-tun cipher BF-CBC keysize 512 comp-lzo verb 4 mute 5 tun-mtu 1500 mssfix 1450 # Added in the shell script as a flag so configuration can be specified ;auth-user-pass reneg-sec 0 # Prevent man in the middle spying by other clients # this is an addition which is not present in ProXPN's conf file remote-cert-tls server # Comment out this chunk since our script is Linux only # and these configuration options are here to primarly deal # with the built-in Windows firewall ;route-method exe ;route-delay 1 ;route-metric 512 ;route 0.0.0.0 0.0.0.0 # If you are connecting through an # HTTP proxy to reach the actual OpenVPN # server, put the proxy server/IP and # port number here. See the man page # if your proxy server requires # authentication. ;http-proxy-retry # retry on connection failure ;http-proxy [proxy server] [proxy port #] # Root CA cert provided by ProXPN <ca> -----BEGIN CERTIFICATE----- #The key... -----END CERTIFICATE----- </ca> # Cert provided by ProXPN, all clients have the same cert. # While at first this seems problematic, it may be beneficial # because makes it difficult to identify any individual user # based only on their cert. This would not be the case if all # clients had unique certs. #And here follow keys and certificates...
I'm now unsure what exactly causes the inability to connect. Could it be the protocol? The IPs of proXPN aren't blocked as I can see from pinging. I could reach all of those: http://downgoat.net/proxpn-openvpn-on-linux-configuration.html
Using the openVPN bash client gives me the following output:
qohelet@Iran:~$ sudo proxpn Welcome to the ProXPN OpenVPN Bash Client! No credentials file found at /etc/proxpn/login.conf, you will be prompted by OpenVPN to login to ProXPN Which exit node would you like to use? 1) Chicago 5) Dallas 9) NYC 13) Miami 2) Sweden 6) BASIC 10) Stockholm 14) SanJose 3) Netherlands 7) London 11) Prague 4) Singapore 8) LA 12) Seattle Select an exit node:1 Running: /usr/sbin/openvpn --config /etc/proxpn/proxpn.ovpn --remote chi1.proxpn.com 443 --auth-user-pass --auth-nocache Mon Nov 16 19:47:48 2015 us=371638 Current Parameter Settings: Mon Nov 16 19:47:48 2015 us=371831 config = '/etc/proxpn/proxpn.ovpn' Mon Nov 16 19:47:48 2015 us=371872 mode = 0 Mon Nov 16 19:47:48 2015 us=371906 persist_config = DISABLED Mon Nov 16 19:47:48 2015 us=371939 persist_mode = 1 Mon Nov 16 19:47:48 2015 us=371969 NOTE: --mute triggered... Mon Nov 16 19:47:48 2015 us=372014 270 variation(s) on previous 5 message(s) suppressed by --mute Mon Nov 16 19:47:48 2015 us=372050 OpenVPN 2.3.2 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [eurephia] [MH] [IPv6] built on Dec 1 2014 Enter Auth Username:email@example.com Enter Auth Password: Mon Nov 16 19:48:01 2015 us=840598 LZO compression initialized Mon Nov 16 19:48:01 2015 us=840880 Control Channel MTU parms [ L:1544 D:140 EF:40 EB:0 ET:0 EL:0 ] Mon Nov 16 19:48:01 2015 us=841014 Socket Buffers: R=[87380->131072] S=[16384->131072] Mon Nov 16 19:48:01 2015 us=901436 Data Channel MTU parms [ L:1544 D:1450 EF:44 EB:135 ET:0 EL:0 AF:3/1 ] Mon Nov 16 19:48:01 2015 us=901629 Local Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,cipher BF-CBC,auth SHA1,keysize 512,key-method 2,tls-client' Mon Nov 16 19:48:01 2015 us=901743 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto TCPv4_SERVER,comp-lzo,cipher BF-CBC,auth SHA1,keysize 512,key-method 2,tls-server' Mon Nov 16 19:48:01 2015 us=901880 Local Options hash (VER=V4): '729fc673' Mon Nov 16 19:48:01 2015 us=902116 Expected Remote Options hash (VER=V4): 'ce7b442d' Mon Nov 16 19:48:01 2015 us=902287 Attempting to establish TCP connection with [AF_INET]10.10.34.36:443 [nonblock] Mon Nov 16 19:48:11 2015 us=904720 TCP: connect to [AF_INET]10.10.34.36:443 failed, will try again in 5 seconds: Connection timed out Mon Nov 16 19:48:26 2015 us=957119 TCP: connect to [AF_INET]10.10.34.36:443 failed, will try again in 5 seconds: Connection timed out Mon Nov 16 19:48:41 2015 us=981127 TCP: connect to [AF_INET]10.10.34.36:443 failed, will try again in 5 seconds: Connection timed out Mon Nov 16 19:48:57 2015 us=4394 TCP: connect to [AF_INET]10.10.34.36:443 failed, will try again in 5 seconds: Connection timed out Mon Nov 16 19:49:12 2015 us=30729 TCP: connect to [AF_INET]10.10.34.36:443 failed, will try again in 5 seconds: Connection timed out Mon Nov 16 19:49:27 2015 us=58663 NOTE: --mute triggered...
I'm running low on ideas now. Is there a way of using proXPN an Proxy-Server in Firefox. Trying it once by simply using the IP and my login-details failed without any result at all.
I'd be glad if any of you has an idea...