Are obfuscated servers more secure?

Many people seem to get confused by servers with multiple IPs.

This article explores different approaches to making server use secure when multiple public and private IPs are used. I'm going to start with a real world example that was sent to me this morning. I work at a company that has two very large data centres that have many very powerful services, all of which need to be accessed from across the network. So far, all traffic is to multiple servers, each with one public and one private IP addressing. The public IPs can be easily reached from any machine anywhere in the network, but only those machines which the administrator wants to make available (all of which are on a DMZ protected in-house network) can access the private IPs. This works well and we never have had any problems accessing these publicly visible services from 'off line' devices, so I assume it is pretty safe. If you look in my screenshot you'll see that there are several things going on:

A typical DMZ protected network. This would behind a firewall with NAT. One side of the NAT would have the public IP for the web servers and the second side of the NAT would be the public IP of the servers running the email service and suchlike. These could have been public addresses. It may seem reasonable to give the server the same IP regardless of its role, but a single IP is not ideal. With many servers or VPS machines, it can make sense to have single shared IP addressing. With email for instance, you don't want just anyone connecting to your Exchange or postfix servers. If people know the ip they can start sending spam and otherwise abuse the connection. With a single IP, if you use a whitelist approach to restrict what connections can use this IP and the IP is compromised, then any connections that the machine would accept before hand will be open to attack. There are various ways around this, of course - you could assign multiple ranges to the same public IP or use dynamic addressing, but the first thing someone needs to do when they try to do something nefarious is guess at a valid address (since they can't tell you know the correct one). So - it could beneficial to allow two or more publicly seen service to share the same public IP.

Two different VPS servers and mail servers sharing the same public IP.

What is obfuscated in NordVPN?

While the developers have claimed that NordVPN is completely free of censorship, we are still worried about the possibility of them engaging in unfair behavior, which the users may not be aware of.

If they do so, it will be a lot more difficult for the users to understand the consequences and to decide whether to continue using NordVPN or not.

Is NordVPN totally secure? We would like to see that NordVPN has the most effective protection of the privacy and security of its users. However, since it is a completely free VPN service, the developers cannot really make sure of their protection to our data. We hope that NordVPN will implement additional security technologies to make sure that all users can feel safe.

Do you pay for NordVPN if not completely safe? It is possible for the developers to collect user data and use them for commercial purposes. So what should the users do in that case? They can decide whether or not to continue using NordVPN as it is, but if we are not totally secure, paying for NordVPN will not change anything.

What should you do in that case? You should ask yourself if you are willing to pay for such an unreliable and less secure service. Do not hesitate to change your VPN if you are not 100% sure that NordVPN is not hiding other people's traffic and leaking your own information.

NordVPN FAQ & Tips. It will take time for NordVPN to show its real intentions. However, when we started to do some preliminary research, we found out that it's not 100% sure that the developers do not collect user data and use it to increase their revenues.

If you do not believe us, you can find out for yourself on their website and download their free trial. Since they claim that the trial version is not really a trial at all, it can be used to test if you really want to try it or not. Moreover, the first month is free of charge. Do not waste your time and download their free version right now.

Another thing to watch out for is that the free version does not support torrenting and IP leak prevention. If you want to make sure that you will not leak your own personal information while using NordVPN, you should purchase one of their monthly plans.

One of the best features of NordVPN is the ability to connect multiple devices to a single account.

Is NordLynx better than OpenVPN?

I am currently trying to set up a connection between my laptop and the VPN server.

It's all done using OpenVPN. Is there an alternative that I can use?

I don't have much experience with VPN connections. I have used them for the occasional day-trips, but not a whole lot. This is my first time setting it up. I have a Windows 7 laptop, and a Linux server.

I have been able to set up the connections using the OpenVPN method. I was wondering if NordLynx has something better.

Re: NordLynx better than OpenVPN? The reason for your problem is that you are using a self-signed certificate which will not work with Macs. That is because Macs don't use OpenSSL, they use their own code.

However, if you follow the instructions below, you can get a trusted certificate and everything will work. This will allow you to setup OpenVPN in Mac OS X Mountain Lion using the latest version of OpenVPN (OpenVPN 2.1). The certificates used here are signed by Apple Inc., so they are trusted by Mac OS X and other OpenVPN clients.

I am using this exact setup at my company. They use a self-signed certificate and I am using the above to connect to our office.

For those who may be interested, here are the instructions to set up the same connection on a Mac. Installing OpenVPN. You can install OpenVPN on a Mac from a downloaded binary (this is the only way I have tested it). After installing the .pkg file, you will need to run a command line program called OpenVPN.

Now that we have the program installed, let's add some certificates. I chose to sign them using Apple's Keychain Access program, but you can choose any other method that you would like.

Open Keychain Access and make sure you have a "login" in the left side panel. Make sure the keychain you are adding it to is the "login" keychain.

Should i use obfuscated vpn?

/ OpenVPN is running on a router, and all of the client machines are already configured.

Does anyone have experience with this, or have any suggestions? The reason I would like to use this method is that it is an easier setup. I don't have to worry about the Windows client being open for anyone who is monitoring my network traffic. Is there any other reason to use an OpenVPN-based VPN, besides a simple setup?
I would really like to use as much of the Tor network as possible while still maintaining security and anonymity. Is there any reason why I should use a VPN instead of using Tor and just using normal browser encryption? OpenVPN can do shared keys, and it's probably better to use that.

There are still other problems with OpenVPN though, as discussed in the link: Tor is probably better than OpenVPN though - but OpenVPN doesn't appear to use the Tor network and can also be a little complicated to set up. There's another project which looks pretty interesting, even if I have no idea how useful it is: Good luck!