T
T
TechStudent2016-09-03 10:00:07
VPN
TechStudent, 2016-09-03 10:00:07

How to set up a server for VPN over proxy?

Hello.
Can you tell me how to raise and configure an HTTP proxy on the same server as the VPN so that VPN can be run through this proxy?
UPD: I ask a question more clearly.
My ISP blocks almost all resources on the Internet, so I have to use a VPN. I have a virtual server, I have set up an OpenVPN server (TCP, TLS-Cipher TLS-DHE-RSA-WITH-AES-128-GCM-SHA256, AES-128-CBC, SHA256) on it. Up to this day everything worked just fine, but they apparently increased the filtering, so it's impossible to connect now. The port I am using is not blocked, everything is fine with the port. Everything is fine in the settings of OpenVPN itself, everything works in other countries, I also checked it.
Now I want to try setting up a VPN connection not directly, but through a proxy server. I want to raise the proxy on the same server with the same IP on which the VPN is running. I would be glad if you offer a more competent option.
Small snippet of logs:
Sep 1 12:11:29 SERVERNAME ovpn-server[3482]: TCP connection established with [AF_INET]My_IP
Sep 1 12:11:29 SERVERNAME ovpn-server[3482]: My_IP TLS_ERROR: BIO read tls_read_plaintext error: error:1408A0C1:SSL routines:ssl3_get_client_hello:no shared$
Sep 1 12:11:29 SERVERNAME ovpn-server[3482]: My_IP TLS Error: TLS object -> incoming plaintext read error
Sep 1 12:11:29 SERVERNAME ovpn-server [3482]: My_IP TLS Error: TLS handshake failed
Sep 1 12:11:29 SERVERNAME ovpn-server[3482]: My_IP Fatal TLS error (check_tls_errors_co), restarting
[...]
Sep 1 17:57:15 SERVERNAME ovpn-server[32147]: profilename/My_IP MULTI_sva: pool returned IPv4=10.0.0.18, IPv6=(Not enabled)
Sep 1 17:57:15 SERVERNAME ovpn-server[32147]: profilename/My_IP send_push_reply(): safe_cap=940
Sep 1 17:57:50 SERVERNAME ovpn-server[ 32147]: profilename/My_IP Connection reset, restarting [0]

Answer the question

In order to leave comments, you need to log in

1 answer(s)
A
Alexey, 2016-09-03
@alsopub

I don’t understand what a proxy will give you if you can just as well change the VPN port or switch between tcp / udp connection to vpn.
By the way, try switching to udp, and even better if udp + port 53 (this is a port for dns, it is rarely blocked).
If you have a working ssh connection, you can try port forwarding through an ssh tunnel (from you to the vpn).
UPD. If at all this is the case, and not in "no shared ciphers".

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question