Want to setup VPN
#1
Original Poster
Join Date: Sep 2005
Location: LAX
Programs: UA 2P, SPG Gold
Posts: 157
Want to setup VPN
I use public wifi occasionally and sometimes overseas but I don't do anything secure. But there are I times I wish I had a VPN setup at home to log into my bank account or something. I don't really care to access files at home, I just want to have an option to be able to browse the internet securely if I'm on a public wifi.
I've read about people using DD-WRT enabled routers to do this. Is this a good option or is it too slow? I don't really want to setup a dedicated linux computer for this. Nor do I want to pay for an online service.
Can you recommend me options?
Thanks!
I've read about people using DD-WRT enabled routers to do this. Is this a good option or is it too slow? I don't really want to setup a dedicated linux computer for this. Nor do I want to pay for an online service.
Can you recommend me options?
Thanks!
#2
Join Date: May 2002
Location: Um lugar muito bonito
Programs: UA GS, UA 2-Million Miler, IHG Plat, Hyatt Plat, HHonours Diamond, Marriott Plat, EVA Gold
Posts: 162
I'd recommend the Hamachi VPM product from www.logmein.com. Easy to configure, free for personal use though you can get a bigger feature set with paid versions.
#3
Join Date: Jun 2002
Posts: 960
if you are accessing your bank, it will be over a secure http connection so there's no need for vpn.
#4
Join Date: Jul 2001
Location: Lower Merion Township, PA, (an inner-ring suburb to the Socialist Workers City/State of Philadelphia, PA)
Posts: 596
I know there's an inexpensive (~ $60) SOHO router from Zyxel that will allow you to do this, at least what I think you what to do:
Windows PC <> WiFi HotSpot <=== VPN ===> Home Router <--- Public Internet --->
The key item here is Windows XP comes with a VPN client that works with this, so no additional cost to obtain a client or security certificate. Look on the zyxel.com website for documentation on their P334 or P335 Broadband Router.
Windows PC <> WiFi HotSpot <=== VPN ===> Home Router <--- Public Internet --->
The key item here is Windows XP comes with a VPN client that works with this, so no additional cost to obtain a client or security certificate. Look on the zyxel.com website for documentation on their P334 or P335 Broadband Router.
#5
Join Date: Jul 2006
Location: California
Programs: AA EXP, lowly UA 1K; Hyatt Diamond, SPG Gold, Hilton Gold; National EC, Hertz PC
Posts: 2,214
I use public wifi occasionally and sometimes overseas but I don't do anything secure. But there are I times I wish I had a VPN setup at home to log into my bank account or something. I don't really care to access files at home, I just want to have an option to be able to browse the internet securely if I'm on a public wifi.
I've read about people using DD-WRT enabled routers to do this. Is this a good option or is it too slow? I don't really want to setup a dedicated linux computer for this. Nor do I want to pay for an online service.
Can you recommend me options?
Thanks!
I've read about people using DD-WRT enabled routers to do this. Is this a good option or is it too slow? I don't really want to setup a dedicated linux computer for this. Nor do I want to pay for an online service.
Can you recommend me options?
Thanks!
#6
FlyerTalk Evangelist
Join Date: Nov 2002
Location: ORD
Posts: 14,231
Logging into a bank account, even from a public wifi location, should be secure. Look for the little padlock in the status bar, depending on what browser you are using. This means your data is encrypted and a hacker could not easily read your passwords, or any other data transferred.
If you're looking to use DD-WRT (I prefer Tomato - more user friendly and only slightly less powerful), you will need to be able to run specialized software on any computer you want to use this with. Specifically, you'll need to use an SSH client.
#7
A FlyerTalk Posting Legend
Join Date: Apr 2001
Location: PSM
Posts: 69,232
If you're going to use a public computer, this security is good. What you have to worry about with a public computer is that someone might have installed keylogging software to record your username and password as you type them. This happens before the encrypted connection, so while the connection itself is quite secure, the computer you're using isn't.
I wouldn't bother with a VPN unless I was accessing corporate data from a company-issued computer. Otherwise I depend on SSL for communication with the appropriate destinations that need it and let the rest of my data, like FT browsing, run free.
One thing the VPN can do is get around web filters, assuming that they allow VPNs from that network. So if the network you are on doesn't allow one to browse to flyertalk.com you could VPN to your home computer and then the browsing would be coming from your home IP address instead of the remote network so you'd avoid their blocking. But other than that I see very little value other than what I stated above.
#8
Join Date: Jun 2007
Programs: M&M, AA GLD, FB
Posts: 233
For the OP, if you just want to sometimes encrypt your connection, just use SSL/SSH. You can set up a browser to browse through a SSH connection to your home computer (also avoiding filters). Any SSH server should support that.
Using a public computer (not your own) to open any sensitive data is borderline stupid (sorry). A friend who worked in an internet cafe showed me what they (legally operated, with a fineprint privacy policy) are employing to protect themselves from various litigations. This includes (among others) keylogging and screen dumps.
Never access your bank account from a public computer, unless you have no other choice.
Using a public computer (not your own) to open any sensitive data is borderline stupid (sorry). A friend who worked in an internet cafe showed me what they (legally operated, with a fineprint privacy policy) are employing to protect themselves from various litigations. This includes (among others) keylogging and screen dumps.
Never access your bank account from a public computer, unless you have no other choice.
#9
Join Date: Nov 2006
Location: Detroit; Formerly Dubai
Posts: 3,652
I VPN home and out because I want a US IP address for somethings. For example, some bill pays are programmed not to allow persons from coming in from a foreign internet address. They believe it reduces fraud. I think they are nuts, but that is beyond the point of this discussion.
#10
Join Date: Jul 2001
Location: Lower Merion Township, PA, (an inner-ring suburb to the Socialist Workers City/State of Philadelphia, PA)
Posts: 596
Anyone worried about keylogging software on a public computer, which is a trival thing for a hacker to install, should remember the Windows standard On Screen Keyboard:
Start > Programs > Accessories > Accessibility > On Screen Keyboard
or
Start > Run > osk.exe
If not present, be suspicious and use another public computer.
Start > Programs > Accessories > Accessibility > On Screen Keyboard
or
Start > Run > osk.exe
If not present, be suspicious and use another public computer.
#11
Join Date: Aug 2005
Location: SNA Rwy 20L
Programs: QF Silver
Posts: 703
I guess opinions are varied depending on the application but when traveling I always use OpenVPN to tunnel into my home router running DD-WRT before accessing the internet. I have standard AT&T DSL service at home and use a $30 Buffalo router as the VPN server. It does solve several issues:
1. Security - Nothing's ever perfect but I feel much safer against "man-in-the-middle" monitoring.
2. Convenience - I hate being redirected to country-specific sites (i.e., google.com.au when typing google.com). You also don't have to work around hotel ISPs which block ports (particularly SMTP).
3. Easy access to your home LAN.
Yes it is a bit slower running encrypted but on a recent trip to Japan I VPNed home and used MagicJack to access a US dialtone and used my EnjoyPrepaid account to call New Zealand. Even with the VPN the double VoIP hop sounded great.
1. Security - Nothing's ever perfect but I feel much safer against "man-in-the-middle" monitoring.
2. Convenience - I hate being redirected to country-specific sites (i.e., google.com.au when typing google.com). You also don't have to work around hotel ISPs which block ports (particularly SMTP).
3. Easy access to your home LAN.
Yes it is a bit slower running encrypted but on a recent trip to Japan I VPNed home and used MagicJack to access a US dialtone and used my EnjoyPrepaid account to call New Zealand. Even with the VPN the double VoIP hop sounded great.
#12
Join Date: Jan 2005
Location: OAK
Programs: AS MVPG 100k
Posts: 3,756
Take a look at www.publicvpn.com.
#13
Join Date: Jan 2006
Location: ORD
Programs: UA 1K
Posts: 1,084
A couple other things you can look at are OpenVPN (free) and SSH tunnelling. Both would be something you load on your machine at home. OpenVPN lets you do a full blown VPN tunnel, whereas SSH you run things over an SSH connection. Some SSH clients let you set it so you can use the SSH tunnel as a proxy server for your Internet connection.
#15
Join Date: Aug 2006
Location: NYC
Programs: AA LT G (1MM);DL G, UA GM
Posts: 2,028
I finally gave up on finding the mobile Mac of my dreams and just got an Asus EEE PC (Linux) for traveling. As a Mac person I have never worried about this stuff; what should I install or do to ensure security on wireless networks (this trip, Paris and Frankfurt)? Is VPN a software or hardware option? Help for a non-techie, please!