User Tools

Site Tools


information:vpn.ac

This is an old revision of the document!


Information

  • VPN.AC 1)

Keys

mkdir -p ~/'.cert/vpn.ac' && wget -O ~/'.cert/vpn.ac/ca.crt' 'https://vpn.ac/ovpn/ca.crt' && wget -O ~/'.cert/vpn.ac/tls-preshared-256.key' 'https://vpn.ac/ovpn/tls-preshared-256.key' && sync

SELinux

  • :!: Fedora Linux used to require this
restorecon -R -v ~/'.cert'

Profiles

Settings

Certificates

~/.cert/vpn.ac/ca.crt
~/.cert/vpn.ac/tls-preshared-256.key

Profiles

US East, New York

US East, New York
us21.vpn.ac

Mexico, Mexico City

  • Useful for region-based payments
Mexico, Mexico City
mx1.vpn.ac

US East, Ashburn

  • :!: Has been known to have intermittent connection issues with FFXIV
  • :!: Niantic games won't connect from this server 2)
US East, Ashburn
us8.vpn.ac

Romania, Bucharest

Romania, Bucharest
ro1.vpn.ac

Other Settings

  • Authentication Type: Password
  • UDP: 8000 or 50000 for gateway port
  • TCP: 8333 or 5900 for gateway port
  • Cipher: AES-256-GCM
  • HMAC Authentication: SHA-512
  • [x] Verify peer (server) certificate usage signature
    • Remote peer certificate TLS type: Server
  • Mode: TLS-Auth
  • Key Direction: 1

Auto-Connect

  • On the Password GUI box, select Store the password for all users
  • On the intended main connection interface: General → Automatically connect to VPN
nm-connection-editor

Segmentation Fault Fix

  • :!: At some point in 2021, trying to enable Automatically connect to VPN causes it to segmentation fault
  • :!: Apparently fixed upstream with da6b2bb9
  • On Fedora 34, an updated network-manager-applet solves this (see QA:Updates Testing)
  • :!: TODO: See if this still works if the applet is downgraded with distro-sync but the VPN auto-connect is enabled
sudo dnf install 'network-manager-applet' --enablerepo='updates-testing,updates-testing-modular' --best && sync
2)
notably Pokemon GO and Ingress, and notably only on mobile devices
/var/www/wiki/data/attic/information/vpn.ac.1620859772.txt.gz · Last modified: 2021/05/12 18:49 by Sean Rhone