New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
Ultrasurf...
Did you install a certificate to your device? Which certificate authority you see when you connecto to Google or lowendtalk?
Doubt it. Top 3 companies requires a certain level of experience, and you do not get to that level if you are that stupid.
Well, there is a third option, but you are probably not betting on that.
Have you tried turning it off and on again?
This really is the best answer.
This has been my experience working in multiple F500 companies as well. You can ssh out on the internal network but not to random Internet IPs.
been there, same problems
even wireguard on 443/80 didnt work
but here is what DID work
netbird + rdp
proton stealth vpn (mac)
https://github.com/jlesage/docker-firefox browser in browser or similar
i just bought a 120gb data plan as the wifi with whichever method was just terrible
now i dont go to school anymore, but it's not worth it downgrading (yes i can) so i kept it (my usage is like 20gb)
For me, selfhosted AmneziaVPN worked using the xray protocol.
Surprisingly Tailscale with exit node enabled also worked? Maybe try that too
Would ask if a RDP session is available.
Yep, Tailscale has the ability to get through Firewalls and NAT (CGNAT)
The deep dive blog post if interested.
https://tailscale.com/blog/how-nat-traversal-works
I use
ocservas my go-to VPN server, usingopenconnectas my client.While nowhere as popular as WireGuard I prefer it for some reason, namely for using PAM-based authentication and dynamic IPs.
Shadowsocks and vless work well for me
Didn't realize there's so many ways to circumvent the firewall. This thread has certainly taught me a lot. Thanks all!
I'm betting OP's issue is PEBKAC and DNS related. Schools don't tend to have better firewalls than China.
try windscribe for commercial vpn, they got openvpn over tls and websockets,
amnezia for self hosted, their custom wg can bypass china firewall
https://windscribe.com/
https://amnezia.org/
As a last resort, you can always set up a neko-browser / guacamole / kasm workspace service and use these browser based remote desktop.
It depends(tm). There are some relatively off the shelf solutions for schools/colleeges in the UK at least that are incredibly comprehensive, I've done some ad-hoc work for UK schools and have usually been pretty impressed by their firewall.
The regulations surrounding Keeping Children Safe In Education put a lot of the onus of the consequences of any filter bypass directly on the school's leadership and as such there is a pretty reasonable investment in to the filtering solution.
(I've also done some work in US schools and have been a LOT less impressed, fwiw).
Actually, schools are probably both the worst and among the best I've seen.
A lot of schools buy security as a service, and some of those guys are pretty good. Everything gets routed trough a dc somewhere with ngfw's, proxies, dpi, 802.1x etc.
Get a student's special discounted SIM card.
Try hysteria2 with and without obfuscation password
Use Xray Reailty protocol, fairly easy to setup
Amneziawg is another option with a too easy one click server setup and tries to obfuscate the tunnel traffic as quic, so you maybe able to get past any DPI
SIM card and hotspot or fight a losing battle, you choose.
if ping is available ,try using vpn over icmp
I'm mostly going by the lack of meaningful troubleshooting, but if the VPN is connecting but not passing traffic, that's a weird fucking filter.
I don't care enough to fly to UK and walk into a public school and connect back to my home.
Download "UltraSurf" and run it.