Search This Blog

2012-07-07

ISP: Acanac SSH Tunnel and VPN Setup

ISP: Acanac DSL

This post is about various free services Acanac is giving free to their Internet subscriber. It should works for Acanac cable internet customer as well, but the domain name could be @cable.acanac.net instead of @acanac.net

SSH Tunneling (SOCKS 5)
Pros: It allows browsers, torrent, FTP download to run with faster respond time most of the time
Cons: Certain time, it is slower, but you just don't use it

Common practice is to use port 8080 for local proxy server

For Linux, or Apple OS X
No software installation required, as all UNIX comes with ssh command. Run following to establish ssh tunneling.

Please note that I put in "-v" to display verbose information. This helps any reader to e-mail me with useful information, so that I can help

[hacker@homer3 ~]$ sudo ssh -D 8080 phla8hiu@tunnel.acanac.net -v
[sudo] password for hacker:
...
...cut...
...
The authenticity of host 'tunnel.acanac.net (67.55.0.175)' can't be established.
RSA key fingerprint is ef:ef:00:07:80:9b:89:88:50:c3:63:5a:90:79:f3:a8.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added 'tunnel.acanac.net,67.55.0.175' (RSA) to the list of known hosts.
...
...cut...
...
phla8hiu@tunnel.acanac.net's password:
...
...cut...
...
debug1: Local connections to LOCALHOST:8080 forwarded to remote address socks:0
debug1: Local forwarding listening on ::1 port 8080.
debug1: channel 0: new [port listener]
debug1: Local forwarding listening on 127.0.0.1 port 8080.
debug1: channel 1: new [port listener]
debug1: channel 2: new [client-session]
debug1: Entering interactive session.
debug1: Sending environment.
debug1: Sending env LANG = zh_TW.utf8

At this point, leave the console running. It will display new entries whenever any SOCKS 4 or 5 clients has activities


For Windows (Windows 3.1 to 8 or higher)
1. Download Bitvise Tunnelier or any ssh client with tunneling capability
2. Configure
2.1. ssh server: Tunnel.Acanac.net
2.2. ssh server port: 22
2.3. Method: password (so that we can enter password)
2.4. Username: DSL login without @acanac.net
2.5. Password: DSL password
3. Enable SOCKS 5 (or SOCKS 4) proxy forwarding
4. Listener host: localhost (or 127.0.0.1 both are the same, means this PC)
5. Listener port: 8080 which is commonly used as SOCK proxy server

This will setup the PC as SOCKS 5 proxy server. Next, configure any software, like IE, Firefox, uTorrent, eMule, FTP, e-mail with SOCKS 5 proxy server. Example:
1. Proxy server type: SOCKS 4 or SOCKS 5 (recommend)
2. Proxy server: localhost
3. Proxy port: 8080 (or whatever value configured in Step 5 above)

Any device in the LAN can configure to use SOCKS 5 server (above configured PC), such as BlackBerry phone, Android phone, Android tablet, Apple iPad, Samsung TV, Sony TV, VoIP phone, IPTV, etc. Specify the SOCKS 5 server as the IP of above PC, with port 8080. No need username and password in the device

Additional guide provided in Acanac Forum below
https://community.acanac.com/acanac/viewtopic.php?f=21&t=11264
https://community.acanac.com/acanac/viewtopic.php?f=21&t=11696
https://community.acanac.com/acanac/viewtopic.php?f=21&t=11692
https://community.acanac.com/acanac/viewtopic.php?f=92&t=16963


VPN
Pros: Same as ssh tunneling above
Cons:Same as ssh tunneling above

VPN Web Server Address: https://vpn.acanac.net
VPN Username: phla8hiu@acanac.net (this is sample value)
VPN Password: DSL password

1. Browse to above VPN web server address using any browser
2. Click on "Continue to this web site" and ignore warning "There is a problem with this website's security certificate


3. Download OpenVPN when it prompts. The file name is openvpn-connect-1.8.3.msi
4. Run the MSI file and install into PC
5. Launch program "OpenVPN Connect"
6. Enter login information
7. The PC will connect to VPN, and all the applications will enjoy faster respond time

For Linux (Fedora), click on the upper right hand network icon
1. Specify OpenVPN
2. Specify type as Password
3. Specify server as 67.55.0.106, username, and password

Following web page shows additional steps which you can install OpenVPN server into DD-WRT compatible WiFi router, so that you can connects to your own home network using OpenVPN client

http://www.howtogeek.com/64433/how-to-install-and-configure-openvpn-on-your-dd-wrt-router/

Please use following PayPal donate if post helped

1 comment:

Richard B. McCall said...

Thank you for manual and installation guide for VPN client.
It works good.Cool solution.
10webhostingservice