Hey, I was wondering If there are any VPNs like Tailscale, or other programs that is not firewall blocked in China. I wanted to run the VPN from home and somehow access my home networks from laptop and phone in China. Has anyone here ever done that before?
I am going to China for sometime to work, and i do not really want to use like AstrillVPN or some others “VPN” you see on the internet.
Kind of, I shared mine with a family member for a trip to China, it worked the first day, the second day he complained that it was not working. And I also noticed way too many ssh attempts to my IP from china since then. Then I decided to close it all
I use a small sub $100 mikrotik router with built in wireguard support and a simple port forwarding in my router in a router-on-a-stick configuration. Use some free dynamic dns service to keep track of your home IP and thats all.
You can use any type of VPN. But the GFW of China does some kind of traffic fingerprinting, so your home IP might be blocked after several days of usage. Either setup a timer in your home to obtain a new IP every day, or use a commercial VPN on top of your home VPN.
One of _easy_ solutions is install amnezia’s android app, get vps(or locally-hosted and externally accessible VM) and ask it for configure it (use VLESS/XRay, not AmneziaWG). You have to trust amnezia’s authors.
Or read manuals how to configure it _correctly_ yourself
What’s wrong with using Astrill? I was there for a month and it worked great. The GFW will likely recognise your IP as a VPN within a few days if you use a commonly used service and block it and you’re going to end up needing something like Astrill anyway. They have to change access and IPs almost daily to get around the firewall.
Also if you’re there when there’s a major political event in China (like a large governmental summit etc) nothings going to work anyway.
vpn doesn’t spoof traffic, it only encrypts it, this is the biggest difference between the vpn protocol and other anti-censorship protocols like shadowsocks. If you want to pass gfw you have to use anti-censorship protocols.
its an unequal war, gfw doesn’t need to have proof that you’re accessing censored content to want to block the ip you’re accessing, gfw can block the ip you’re accessing as long as they feel you can
if you want to start with anti-censorship, google sing-box(a proxy toolkit include server end and user end solution)
Well most people use wireguard and port forward their router. This requires public/static ip. I recommend using some random port like 2371 and not the standard wireguard port.