For a long time, ever since i was a little kid, I had always used and trusted Windscribe.
My experience with Windscribe
I was young, it was 2017 and I wanted to circumvent bans and school restrictions. After a bit of looking around for good and cheap VPNs on YouTube, I found the two tempting choices were Tunnelbear and Windscribe but I ultimately picked Windscribe in the end. Windscribe offered a generous free tier, with codes you could enter for permanent cap increases on a free account, I have as of now 50 GBs of free bandwidth total.
Windscribe has a build-a-plan feature, for those who care only to have North American IP addresses, but do want unlimited bandwith. It's about three bucks each month, so cheap that I stayed with Windscribe. The VPN had worked super well for me, allowing me to bypass all kinds of headaches. I could dodge bans, school restrictions, my ISP, and I could browse and access whatever I wanted.
As time went on, I saw the true use of my VPN. It became my main way to solve sites not working or loading. I've had pages load slow without a VPN, that load fast with it on. I've had sites slow down, until I changed servers. It is super excellent for circumventing a huge amount of problems. It is a key tool for accessing any content that I want, while keeping my DNS activity obfuscated to any person in the middle.
My best friend, who I suggested Windscribe to, dealt with an issue it seemingly couldn't fix. His internet router was set up to cut off internet on off hours. I forgot the exact times but it was strict and it forced us to confine our calls and games to set times. One day I was over at his house while his parents were away, I got to see the cutoff, and his PC disconnected, but my devices still remained connected. We thought to try out the DNS spoofing feature the desktop client had. We enabled it and it solved his pesky router situation too. We now both use this service years later.
I picked Windscribe totally blindly back then, off a top ten video on YouTube, I picked whatever was cheap and well received and went with it. I even brought my friend aboard. Did it solve my issues, yes very well, but ultimately it is solely trust. The reputation of Windscribe and my good experience with the product were the main reasons I stuck with it for almost a decade despite it breaking the rule that you should never trust free VPN services. I stuck with it for so long because it worked, for so long and well too. It let me and my friend surf the internet whenever we wanted.
I have no major issues with it as it is still decently reliable. I believe Windscribe is a good product, but the VPN ban talk is making me consider a new candidate and I am looking at Mullvad VPN. While Windscribe was nice for so long, I want the safety of a VPN that operates in a country that doesn't give a fuck.
Mullvad looks promising, and the APT repo comes with a browser too. Doubt I'll touch it over Librewolf, however it is a tool I am genuinely considering switching to as my daily driver VPN.
If you've used Mullvad for a long time, has it served you well in the long run?
I moved away from it for two reasons:
I moved to proton which still does all these things.
Of course these points might not matter to you but I just wanted to point it out
The dropped port forwarding is a bit of a deterrent I will say. Windscribe also is a bit iffy on it.
With Windscribe, you need to buy a static IP and you can only forward above the 1,000 range. I cannot forward 80 or 443 because apparently it is limited to prevent it from being abused.
Yeah I can imagine 80/443 being blocked because sometimes it was being used for awful stuff. I don't really care about that so much, but the higher ports should be available (especially UDP).
I wish I had port forwarding but I don't currently. Not having open VPN support is a deal breaker for me though. A lot of people recently have talked shit about NordVPN but talked up Mullvad. Now that I know Mullvad doesn't even have that standard feature, I'm even more perplexed that people talk it up so much.
Air has openvpn and port forwarding and is cheap.
I haven't heard of Air VPN. They been around long?
Fifteen years or so. I been using it for at least five of those.
I don’t know about their app, how well they evade blocks or anything like that. It’s 2-3$ a month and only used for port forwarding.
They did have it but they dropped it. Or at least they were dropping it server by server, it wasn't completely gone. Not sure what the current status is. But proton had an offer so I decided it was a good time to go
I'm a newbie, what is open VPN support?
It's one of the many VPN protocols. Wireguard is the current favourite.
So in other words, if you don't specifically need openvpn it won't matter to you. Wireguard is good too.
The thing is that openvpn has been around a lot longer so it has more support in things like routers. For me that matters because I have a separate vlan that's connected via a router to my main network.
Gotcha. What does openvpn do?
It's a protocol used to setup a vpn tunel, the basis of all VPN services. It's how computer connects to the network, how it negotiates the encryption the tunel uses and what is being sent and rwceived through it.
Other examples are: mentioned wireguard, ipsec and SSL. There's more, but more obscure ones too.
Just the same as other VPNs, just different protocol.
It's a regular point to point VPN just like wireguard and ipsec. Based on openssl. So you have a client and it connects to a single server. You can also connect a network to another network but usually you use a dedicated router for it. Only if you connect individual clients would you use an app.
There's other VPNs these days which are substantially different, called Mesh or Overlay VPN. These are ones like tailscale and zerotier. They are different in usage because each client can talk together independently. This means even on a shared network each client will have the VPN app. It's used more for personal networks, not really private anonymous access. For those you explicitly don't want to talk to other clients so the usecase makes for different tech. For this reason anonymous VPN providers never use mesh tech.
I use both myself. OpenVPN for torrents etc. And tailscale for connecting to my home stuff from my phone and laptop.
But OpenVPN is a very classical VPN type.
TIL
is it because you're piping everything through your vpn?
No, but I have a home lab and that is behind the VPN. With a download server and some other stuff like IRC (IRC can expose your home IP to other users)
The router blocks any requests going around the VPN so that the usual de-anonimisation tricks don't work.
I'm glad to learn that irc is still a thing.
some O.G. social media sounds like a smarter thing to be doing rn considering the state of affairs on the big name platforms.
You may want to migrate away from openvpn with hardware acceleration. It’s my understanding that the type of hardware built to accelerate openvpn uses older crypto processes that are not hardened against parallelization or quantum.
Quantum is fake but parallelization is absolutely not and once it becomes more profitable to pop hashes than to do erp with racks of dgxs people are gonna do it.
Honestly, I don't really care about that. Yes it uses quantum-sensitive protocols like AES but honestly, who with a quantum computer is either going to:
For my threat model the threat of my VPN crypto being broken just isn't important right now especially in my VPN usecase which is already low-importance stuff. There's nothing valuable or personal in that traffic. The only reason I use the VPN is to do torrents really. If they want to grab a few torrenters and make an example out of them it's much easier to grab a few that are not using any VPN. There's still loads of people torrenting directly on their bare home IP.
It's like the saying of the two guys running from the bear. One says to the other: "We're not gonna outrun him!". The other says: "Doesn't matter, I only have to outrun you". Not being the easiest catchable is enough protection.
What I’m trying to communicate is that in the case of an ai profitability crash or even just the v and a series gpus getting dropped from cuda support (they’re next on the chopping block!) you will suddenly be the slow guy.
People raw dogging the internet aren’t the ones you have to outrun because even twenty years ago there wasn’t a real investigation, they just immediately got prosecuted. In your metaphor they all get caught in camp asleep, you’re running a race against me but you’re wearing cinder blocks for shoes.
It’s <$20 to get a freshtomato or openwrt compatible consumer router from the thrift shop and switch to wg.
My point isn’t to argue or to fight, but to gently inform that you’re maybe missing a crucial piece of the picture and offer a solution. 😘
Mullvad is Swedish...
Seems you have a typo there, you probably mean "even the sweets".
That is a valid point you bring up, as it is well known that most soft candies are treated to contain mind-altering nanites since at least the 80s.
It's the powdery stuff they put on to "avoid sticking". Sure...