16
18.7 Legacy Series / Re: TOR: is it possible to use tor router only for blocked resources?
« on: December 21, 2018, 10:08:15 am »
so, am i getting right, so there is no way to bypass TOR for services, that are blocked by government?
Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: 1 [2]
17
18.7 Legacy Series / Re: Backup to Google Drive
« on: December 20, 2018, 03:59:45 pm »
for G Suite i found one problem: it became working automatically within 2-3 days...
i've also created a ticket in google... and after weekend i checked it - and it worked.
i can make all screens if you want it
i've also created a ticket in google... and after weekend i checked it - and it worked.
i can make all screens if you want it
18
18.7 Legacy Series / Re: os-openconnect as Cisco AnyConnect
« on: December 20, 2018, 02:33:46 pm »
@mimugmail see attachment
19
18.7 Legacy Series / TOR: is it possible to use tor router only for blocked resources?
« on: December 20, 2018, 02:29:25 pm »
Hello,
i'm trying to configure TOR to bypass blocks, that made our government (we are not allowed to use linkedin, slack and telegram, for example).
nowadays, i use additional VPS with openvpn + alias setting to route several services.
but, now i learned about TOR, and i think it can help me.
i've downloaded package, turned it on, and created setup on local machine - added TOR as Socks Proxy - and i was able to access it.
With that - i found, that all traffic goes thru TOR, which slows down main connections.
Next i found setting "Fascist Mode", but i can't understand how it should work?
if i turn it on - nothing changes.
could you please point me where is my mistake?
i'm trying to configure TOR to bypass blocks, that made our government (we are not allowed to use linkedin, slack and telegram, for example).
nowadays, i use additional VPS with openvpn + alias setting to route several services.
but, now i learned about TOR, and i think it can help me.
i've downloaded package, turned it on, and created setup on local machine - added TOR as Socks Proxy - and i was able to access it.
With that - i found, that all traffic goes thru TOR, which slows down main connections.
Next i found setting "Fascist Mode", but i can't understand how it should work?
if i turn it on - nothing changes.
could you please point me where is my mistake?
20
18.7 Legacy Series / Re: os-openconnect as Cisco AnyConnect
« on: December 18, 2018, 02:40:53 pm »Any ETA on 18.7.7?
i can say that dev version works fine in 18.7.9.
and main version still doesn't support groups.
DNS problem i semi-solved only with overriding option on "Unbound DNS"
21
18.7 Legacy Series / Re: Backup to Google Drive
« on: December 17, 2018, 02:56:42 pm »
where you have questions?
as for me, i have problems with G Suite account... with personal account works great!
as for me, i have problems with G Suite account... with personal account works great!
22
18.7 Legacy Series / Re: ipsec site to site
« on: October 08, 2018, 01:02:21 pm »
Julissa,
you have to set site A as responder, and side B as initiator.
you have to set site A as responder, and side B as initiator.
23
18.7 Legacy Series / Re: os-openconnect as Cisco AnyConnect
« on: October 08, 2018, 01:00:06 pm »
did it.
thanks for suggestion!
thanks for suggestion!
24
18.7 Legacy Series / os-openconnect as Cisco AnyConnect
« on: October 05, 2018, 01:27:06 pm »
Hello,
i'm migrating to OPNsense from pfsense... and found great module - os-openconnect.
on pf i was using plain openconnect from pkgs.
and it was not very comfortable to use, cause i had to manage NAT rules manually (i wrote a simple script, but it needs to be updated sometimes)
so.
problem is - there is no way to add authgroup, certificate and key in web GUI on opnsense.
So, my workaround - is to edit
and it works fine.
Where can i create Feature Request for it?
And there is a bug - some servers asks for username with case sensitive requrements. Web GUI doesn't allow it. So i had to remove it in config and put it on rc.d script too
i'm migrating to OPNsense from pfsense... and found great module - os-openconnect.
on pf i was using plain openconnect from pkgs.
and it was not very comfortable to use, cause i had to manage NAT rules manually (i wrote a simple script, but it needs to be updated sometimes)
so.
problem is - there is no way to add authgroup, certificate and key in web GUI on opnsense.
So, my workaround - is to edit
Code: [Select]
/usr/local/etc/rc.d/opnsense-openconnect and add needed keys to the start function:Code: [Select]
openconnect_start()
{
echo "starting openconnect"
echo ${openconnect_flags}
/usr/local/sbin/openconnect --authgroup SSLVPNClient -c /path/to/crt.cer -k /path/to/crt.key ${openconnect_flags} < /usr/local/etc/openconnect.secret 2>&1 > /dev/null
sleep 5
ifconfig tun30000 name ocvpn0
ifconfig ocvpn0 group ocvpn
return 0
}
and it works fine.
Where can i create Feature Request for it?
And there is a bug - some servers asks for username with case sensitive requrements. Web GUI doesn't allow it. So i had to remove it in config and put it on rc.d script too
Pages: 1 [2]