5

100 5 100
Facebook Twitter YouTube
A

,
2009 GFW 10

Free Nuts
100 VPNProxy SSH

100
web proxy
100

1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.

007007007.eu
1234abcd.net
123proxy.eu
1987proxy.eu
2fastproxy.tk
Aaaproxy.eu
Anonboard.cz
Anonymouscitizens.info
Apenglish.info
Apliterature.info
Auto-aufladen.de
Avoidfiltering.com
Awesomeproxy.eu
Best-free-proxy.eu
Bestproxyes.eu
Boersen-insider.de
C-proxy.eu
Cloakpoint.com
Devilproxy.eu
Dxyh.com
Doobit.info
Enproxy.eu
Filtersneak.com
Free007proxy.eu
Free-web-proxy.de
Freeunlocker.com
Fubrus.com
Futureproxy.eu
G09.info
Goodproxy.eu
Hideproxy.eu

32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.

Hideweb.org
Homeproxy.net
Icthero.com
Ipcamouflage.com
Ipchanging.com
Isityet.net
Itsmyzone.info
Iwebproxy.net
K12history.net
Kixmax.com
Lolproxy.eu
Lopana.com
Longbuluo.info
Loveyd.info
Luispro.com
Ltunnel.net
Mancos.de
Maptao.info
Microxy.com
Meut.info
Netbypassthree.info
Netsneak.com
Olympicproxy.net
Ondrej.me
P-proxy.eu
Pazou.info
Polysolve.com
Pproxy.eu
Profeast.info
Proxay.co.uk
Proxeh.com
Proxy-free.org
Proxy000.eu
Proxy007.eu
Proxy4.eaak.tk
Proxy4you.eu
Proxybutton.com
Proxyforfree.eu
Proxydot.com
Proxydot.eu
Proxydot.info
Proxydot.org
Proxyn.se
Proxytools.info
Q-tunnel.com
Rockvideo.cz
Safeforwork.net
Secure-street.com
Securewebproxy.net
Sleekseed.com
Snowcz.eu
Spem.at
Surfnewip.com
Surfinweb.tk
T-tunnel.net
Tblocker.info
Tellmenot.org
Usawebproxy.net
Unblock-internet.ws
Unblock-websense.com
Ultraproxy.eu
Usfreeproxy.com

94.
95.
96.
97.
98.
99.
100.

Usproxyserver.info
Vtunnel.tv
Vvwa.com
Websurf.in
Workproxy.net
Yellowproxy.net
Yourinternetproxy.info

URL Go
Surf Browse
100 YouTube

YouTube

2
Glype

3
IP

7
7

1
2
3 Tor
4 GappProxy
5 Goagent
6 Hyk-proxy
7 Snova

VPNSSH

Win 7

1.

Windows
2

QQ

IE ChromeFirefox Safari
127.0.0.1 : 8580
Firefox > > Firefox
HTTP 127.0.0.1 8580

 Firefox

Opera Firefox Chrome Safari

HTTPHTTPSFTP SOCKS 4
Windows Mac Linux
Java WM

VPNSSH

exe
UT P

 IE ChromeFirefox Safari
127.0.0.1 : 9666
Firefox > > Firefox
127.0.0.1 9666

Firefox

Tor
Tor Tor

Tor 4

1 Tor

Tor WindowsMacLinux BSDUnix Android Nokia Maemo/N900

Windows Mac Tor Browser Bundle

Vidalia Bundle Tor Firefox Firefox ChromeSafari

Tor Browser Bundle Vidalia

2 Tor


Tor Browser Bundle Start Tor Browser Windows TorBrowser (Mac) Vidalia Bundle Vidalia
Tor

Tor Bridge Vidalia

ISP Tor 117.199.213.96:443
Tor

a
Tor

b
Gmail get bridges bridges@torproject.org
Vidalia Yahoo
Gmail

 Tor
Tor Browser Bundle Vidalia Bundle SOCKS v4
127.0.0.1 : 9050
Firefox > > Firefox
SOCKS 127.0.0.1 9050 SOCKS v4 SOCKS v5
Tor Browser Bundle Vidalia Bundle Tor

GappProxy
GAppProxy 2010 2.0.0 https
GAppProxy 7

1 GAE

Google App Engine ApplicationID

Gmail GAppProxy GAE Application-specific password

Google Security Authorizing applications and sites Edit
Generate password

3 GAppProxy

 GAppProxy

3.1 Windows
Windows GAppProxy

uploader-2.0.0-win.zip
localproxy-2.0.0-win.zip

uploader-2.0.0-win
localproxy-2.0.0-win
3.2 MacLinux
MacLinux GAppProxy

fetchserver-2.0.0.zip
localproxy-2.0.0.tar.gz

fetchserver-2.0.0
localproxy-2.0.0

4 app.yaml

Windows app.yaml uploader-2.0.0-win fetchserver ; Mac/Linux app.yaml

fetchserver-2.0.0 your_application_name GAE

5 GAppProxy

5.1 Windows GAppProxy

uploader-2.0.0-win uploader.exe AppID

gmail

5.2 Mac/Linux GAppProxy

Mac/Linux GAppProxy

5.2.1
Mac Linux Google App Engine SDK for Python

5.2.2
GoogleAppEngineLauncher File New Application Application Name
GAE Application Directory

5.2.3
fetchserver app.yaml fetch.py Application Diretory

5.2.4
GoogleAppEngineLauncher Deploy GAppProxy GAE

5.3 GAppProxy

http://APP_ID.appspot.com/fetch.py
APP_ID GAE :

GAppProxy http https

6
GAE GAppProxy

6.1 Windows GAppProxy

Windows proxy.conf
6.1.1 proxy.conf
localproxy-2.0.0-win proxy.conf your-fetch-server #

6.1.2 GAppProxy
proxy.exe GAppProxy

6.2 Mac/Linux GAppProxy

Mac/Linux Terminal proxy.conf

6.2.1 proxy.conf
Windows proxy.conf localproxy-2.0.0

6.2.2 GAppProxy

python xxx/localproxy-2.0.0/proxy.py
xxx localproxy-2.0.0 proxy.py python

7
GAppProxy IP 127.0.0.1 8000

GAppProxy 80 HTTP 443 HTTPS , SOCKS FTP

 GAE freenutsdotorg

http://freenutsdotorg.appspot.com
http https proxy.conf fetch_server https

fetch-server https://freenutsdotorg.appspot.com/fetch.py
http https GAppProxy GAE
GAE

Goagent
GAppProxy Hyk-proxy Goagent GAE
Goagent 7

1. GAE

Hyk-proxy Goagent GAE

Storage Scheme High Replication

2.

Gmail Goagent GAE Application-specific password Google

Security Authorizing applications and sites Edit
Generate password

3. Goagent

 Goagent local server

4. Goagent
server Goagent GAE

4.1 Windows Goagent

Windows uploader.bat GAE IDGmail

Goagent GAE |

4.2 Mac Goagent

Mac OS X Terminal

cd server-

cd /Users/air/Downloads/goagent-goagent-80e5f01\ 3/server
server cd

python uploader.zip
GAE Gmail Goagent
uploader.zip python

5. proxy.ini

local proxy.ini appid goagent GAE

profile google_cn google_hk https Goagent

6. Goagent
proxy.ini Goagent

6.1 Windows Goagent

 Windows local Goagent.exe Goagent

6.2 Mac Goagent

Mac OS X

python proxy.py-
local proxy.py python

7.
Goagent IP 127.0.0.1 8087

Firefox IEChromeSafari
Goagent
GAppProxy Hyk-proxy Goagent HTTPS local CA.crt ,
2.0.6 Safari HTTPS Facebook Twitter Chrome Firefox

 2.0.11 Chrome HTTPS Facebook Twitter Safari Firefox

Windows Mac OS X Goagent GAE Linux AndroidiOSwebOSOpenWRT Maemo

 Hyk-proxy
GAppProxy Hyk-proxy GAE
Hyk-proxy 8

1. GAE

Goagent Hyk-proxy GAE

2.

Gmail Hyk-proxy GAE Application-specific password Google

Security Authorizing applications and sites Edit
Generate password

3. Java Google App Engine SDK for Java

 Java Google Code Google App Engine SDK for Java

Mac OS X Google App Engine SDK for Java Java

4. Hyk-proxy

Hyk-proxy 4 hyk-proxy-0.9.4.1.zip hyk-proxy-gae-server-0.9.4.1.zip

Windows hyk-proxy-install_0.9.4.1.exe hyk-proxy-0.9.4.1.zip hyk-proxy-android0.9.4beta.apk Android

5.
deploy task Hyk-proxy GAE
Windows hyk-proxy-gae-server-0.9.4.1 install.bat Mac/Linux
Terminal

sh /the-path-to/install.sh
install.sh sh
AppEngine AppCfg GUI Wrapper

 Google App Engine SDK for Java GAE ID hyk-proxygae-server-0.9.4.1 AppLocation Gmail Deploy Hyk-proxy

Bad configuration: appengine-web.xml does not contain a <threadsafe> element.

appengine-web.xml

<threadsafe>true</threadsafe>

6. GAE Hyk-proxy

 Windows bin startgui.bat Start hyk-proxy (GUI)

hyk-proxy-install_0.9.4.1.exe ; Mac/Linux

sh /the-path-to/startgui.sh
hyk-proxy-0.9.4.1 startgui.sh sh
Hyk-proxy Plugins GAE 0.9.4.1 Config New
GAE

Apply GAE

7. Hyk-proxy

Start Hyk-proxy

8.
Hyk-proxy IP 127.0.0.1 48100

 Firefox IEChromeSafari
Goagent

GAE XMPP Hyk-proxy

Connection XMPP XMPP GTalk)

HTTPS Hyk-proxy XMPP

Snova
GAppProxy Goagent, Hyk-proxy Snova GAE Snova HTTPS
6

1.

Snova GAE Snova

2. GAE

GAE Snova Snova

 GAE HTTP HTTPS

PaaS Snova C4

3. Cloud Foundry

Cloud Foundry 4 CUP2G 512M C4

4. Heroku

Heroku 2TB/month
5. OpenShift

OpenShift 3 1G 512
6. Jelastic

Jelastic Servint DogadoRusonyx C4

C4 Heroku snova-c4-heroku-server-xxx.zip PaaS snova-c4-server-xxx.zip

6 n

Hyk-Proxy Snova
Hyk-proxy Goagent Snova GAE GAE
GAE
GAE Hyk-proxy Snova GAE

1. Hyk-proxy

Hyk-proxy Downloads hyk-proxy-0.9.4.1.zip hyk-proxy-install_0.9.4.1.exe Windows

Windows Mac

1.1 Windows
Windows hyk-proxy-0.9.4.1 bin startgui.bat hyk-proxy0.9.4.1.zip Start hyk-proxy (GUI) hyk-proxy-install_0.9.4.1.exe

1.2 Mac
Mac

sh /the-path-to/startgui.sh
the-path-to startgui.sh hyk-proxy-0.9.4.1 startgui.sh
sh
Hyk-proxy Start Hyk-proxy

2. Snova

 Hyk-proxy
Snova Downloads snova-xxx.zip Windows Mac

2.1 Windows
Windows snova-xxx bin startgui.bat

2.2 Mac
Mac

sh /the-path-to/startgui.sh
the-path-to startgui.sh snova-xxx startgui.sh sh
Snova Start Snova
GAppProxy Goagent GAE fetchserver1
GAE

 GAE Snova
, Hyk-proxy Snova
Hyk-proxy Snova GAE CloudFoundry HerokuOpenShift PaaS (Platform as a
service) HTTPS
GAE Snova Hyk-proxy

1. GAE

Hyk-proxy Snova GAE

2.

Gmail

3. Java Google App Engine SDK for Java

 Hyk-proxy Mac OS X Google App Engine SDK for Java

Snova Go Go Google App Engine SDK for Go

4. Snova

Downloads 7 snova-xxx.zip snova-gae-jserver-xx.zip Java )

5.
Hyk-proxy Windows snova-gae-jserver-xx install.bat Mac

sh /the-path-to/install.sh
snova-gae-jserver-xx install.bat sh
AppEngine AppCfg GUI Wrapper

 Google App Engine SDK for Java GAE snova-gae-jserverxx AppLocation Gmail Deploy Snova

6. GAE Snova
Windows bin startgui.bat ; Mac

sh /the-path-to/startgui.sh
snova-xxx startgui.sh sh
Snova Plugins GAE xxx Config New
GAE

Apply GAE

7. Snova

 Start Snova

8.
Hyk-proxy Snova IP 127.0.0.1
48100

Firefox IEChromeSafari
Snova
Hyk-proxy Snova HTTPS CloudFoundry HerokuOpenShift
PaaS Snova

 Cloud Foundry Snova

Snova GAE HTTPS Cloud Foundry HerokuOpenShift
PaaS Snova
Cloud Foundry Snova

1. Cloud Foundry

Cloud Foundry

2. vmc

Ruby RubyGems vmc Snova Cloud Foundry

WindowsUbuntuDebian Mac vmc

sudo gem install vmc

vmc

3. snova-c4-server-xxx.war

Snova Downloads snova-c4-server-xxx.war snovac4-server

4. Snova c4 Cloud Foundry

cd /the-parth-to/snova-c4-server
snova-c4-server cd

vmc target api.cloudfoundry.com

vmc login ( Cloud Foundry )
vmc push free-nuts ( free-nuts Cloud Foundry )
Would you like to deploy from the current directory? [Yn]: ( y)

Detected a Java Web Application, is this correct? [Yn]: ( y)

Application Deployed URL [free-nuts.cloudfoundry.com]: ()
Memory reservation (128M, 256M, 512M, 1G, 2G) [512M]: ()
How many instances? [1]: ()
Create services to bind to 'free-nuts'? [yN]: ( n)
Would you like to save this configuration? [yN]: ( y)
OK

free-nuts.cloudfoundry.com

Welcom to snova-c4 server xxx!

Welcom Welcome
Snova c4 Cloud Foundry

5. Snova c4

c4-client.conf

.../snova-xxx/plugins/c4/conf/c4-client.conf
WorkerNode [1] # xyz 4 Cloud Foundry free-nuts

6. snova.conf

 snova.conf

.../snova-xxx/conf/snova.conf
ProxyService GAE C4

7. Snova

Snova

Start plugin:C4 Success

Snova HTTP HTTPS

 Heroku Snova
Snova GAE Cloud Foundry HerokuOpenShift PaaS HTTPS

Cloud Foundry Heroku

PaaS Heroku Cloud Foundry

1. Heroku

Heroku

2. Heroku Toolbelt

Heroku Toolbelt

3. snova-c4-heroku-server-xxx.zip

 Snova Downloads snova-c4-heroku-server-xxx.zip

4. Snova c4 Heroku

Mac Windows

cd /the-parth-to/snova-c4-heroku-server-xxx
snova-c4-heroku-server-xxx cd

heroku login ( Heroku )

git init
git add .
git commit -m "init"
heroku create --stack cedar

git push heroku master

http://obscure-tundra-1542.herokuapp.com/

Welcom to snova-c4 server xxx!

Welcom Welcome
Snova c4 Heroku

5. Snova c4

 c4-client.conf

.../snova-xxx/plugins/c4/conf/c4-client.conf
WorkerNode [0] # xyz 4 Heroku obscure-tundra1542

6. snova.conf

snova.conf

.../snova-xxx/conf/snova.conf
ProxyService GAE C4

7. Snova

 Snova

Start plugin:C4 Success

Snova HTTP HTTPS

 OpenShift Snova
Snova
C4 OpenShift rhc-create-domain jbossas-7.0
jbossas-7 git commit m git commit -a -m
OpenShift Snova

1. OpenShift

OpenShift CAPTCHA

2. snova-c4-server-xxx.war

Snova Downloads snova-c4-server-xxx.war openshift

3. rhc

Rhc C4 OpenShift
Mac

sudo gem install rhc

Windows Linux OpenShift

4. Snova c4 OpenShift

openshift

cd /the-parth-to/openshift
openshift cd

rhc domain create -n freenutsdot -l xxx@gmail.com -p 123456

( freenutsdot.rhcloud.com freenutsdot xxx@gmail.com
123456 OpenShift )
2

rhc app create -a fn -t jbossas-7 -p 123456

( OpenShift fn-freenutsdot.rhcloud.com
fn 123456 OpenShift openshift
fn

cd fn
()
4

mv ../snova-c4-server-xxx.war deployments/ROOT.war
( snova-c4-server-xxx.war fn deployments ROOT.war )
5

git rm -r src pom.xml

( src pom.xml )
6

git init
( fn )
7

git add .
( ROOT.war )
8

git commit -a -m "haha"

( haha )
9

git push
( ROOT.war OpenShift )

http://fn-freenutsdot.rhcloud.com/
fn-freenutsdot OpenShift

Welcom to snova-c4 server xxx!

Welcom Welcome
Snova c4 OpenShift

5. Snova c4

 GAE Snova c4-client.conf

.../snova-xxx/plugins/c4/conf/c4-client.conf
WorkerNode [0] OpenShift ( fn-freenutsdot.rhcloud.com)
Snova C4 c4-client.conf Cloud Foundry Heroku
WorkerNode

6. snova.conf

snova.conf

.../snova-xxx/conf/snova.conf
ProxyService GAE C4

7. Snova

 Snova

Start plugin:C4 Success

Snova HTTP HTTPS

 Jelastic Snova
Cloud Foundry HerokuOpenShift Jelastic Snova C4
PaaS Jelastic C4

1. snova-c4-server-xxx.war

Snova Downloads snova-c4-server-xxx.war

2. Jelastic

Jelastic

3. Jelastic

 Environment topology Environment name

freenuts C4 Jelastic freenuts.jelastic.servint.net
Create

4. snova-c4-server-xxx.war

Upload snova-c4-server-xxx.war
Comment

5. Snova c4 Jelastic

snova-c4-server-xxx.war 3

 freenuts C4 Jelastic
Jelastic freenuts.jelastic.servint.net

Welcom to snova-c4 server xxx!

Welcom Welcome

6. Snova c4

GAE Snova c4-client.conf

/snova-xxx/plugins/c4/conf/c4-client.conf
WorkerNode [0] Jelastic ( freenuts.jelastic.servint.net)
Snova C4 c4-client.conf Cloud Foundry Heroku OpenShift
WorkerNode

7. snova.conf

 snova.conf

/snova-xxx/conf/snova.conf
ProxyService GAE C4

8. Snova

Snova

Start plugin:C4 Success

Snova HTTP HTTPS


Tor Snova SSH ,
IP 127.0.0.1 Port 8580Tor 9050Snova 48100

1. SwitchySharp

SwitchySharp ( Proxy SwitchySharp) Chrome

SwitchySharp Options Profile Name

GappProxy Goagent Hyk-proxy Snova HTTP Proxy 127.0.0.1 Use the

same proxy server for all protocols Tor SSH SOCKS Hosts (SOCKS v4) IP 127.0.0.1
9050 7070
New Profile
Save Chrome SwitchySharp

Proxy Switchy SwitchySharp Chrome

2. FoxyProxy Standard

FoxyProxy Standard Firefox

Add New Proxy

GappProxy Goagent Hyk-proxy Snova Proxy Details Host or IP Address

127.0.0.1 Tor SSH SOCKS proxy? SOCKS v4/4a
General Proxy Name
OK

You didn't enter and enable any whitelisted (inclusive) URL patterns. This means the proxy won't be used unless FoxyProxy is
set to "Use Proxy tor for all URLs". Continue anyway?
OK
Select Mode

AutoProxy

FoxyProxy Standard Continue anyway?

 VPN
VPNVirtual Private Network PPTPL2TP OpenVPN PPTP OpenVPN

10 PPTP VPN
VPN PPTP (Point-to-Point Tunneling Protocol)
VPN
, 10 PPTP VPN

1. SecurityKISS

SecurityKISS 2 PPTP/L2TP VPN

ID SecurityKISS IP
PPTP L2TP SecurikyKISS WindowsMac Linux OpenVPN
VPN 300M

2. Super Free VPN

Super Free VPN PPTP VPN 8


superfreevpn.com IP

69.60.121.29
3. JustFreeVPN

JustFreeVPN 3 PPTP VPN

justfreevpn

4. UFreeVPN

UFreeVPN PPTP VPN

5. NewFreeVPN

NewFreeVPN PPTP VPN

free 1234

6. Tsunagarumon

Tsunagarumon

Tsunagarumon PPTP VPN

7. FreeCanadaVPN

FreeCanadaVPN VPN freecanadavpn.com free

8. BestUKVPN

BestUKVPN VPN bestukvpn.com free

9. Zace Book

Zace Book VPN vpn.zacebook.com VPN

10. VPN Book

VPN Book pptp.vpnbook.com pptp

PPTPVPN Book OpenVPN
10 PPTP VPN SecurityKISS VPN

Super Free VPN PPTP VPN IP

 PPTP VPN
PPTP VPN
PPTP VPN

1 IP
2
3
PPTP VPN
WindowsMaciOS Android
1 Windows XP

2 Windows Vista
Internet VPN

3 Windows 7

4 Mac OS X

Mac OS X VPN VPN

5 iPhone
VPN VPN

6 Android

VPN
PPTP VPN
PPTP VPN StrongVPN
vpnonly.us 3qvpn.info

1 PPTP VPN IP
2L2TP VPN PPTP VPN Shared Secret

6 VPN
PPTP VPN VPN OpenVPN
6 VPN

1. SecurityKiss

SecurityKiss PPTP/L2TP VPN

WindowsMac Linux OpenVPN

VPN 300M

2. ProXPN

ProXPN Windows Mac OS VPN

ProXPN
proXPN iOS Android PPTP VPN

3. Private Tunnel

Private Tunnel OpenVPN Windows Mac OpenVPN 100

MB,
, OpenVPN Connect , San Jose, CALondon Zurich

4. Hotspot Shield

Hotspot Shield WindowsMac Android VPN

Hotspot Shield iOS 7

5. ExpatShield

Hotspot ShieldExpatShield VPN Windows

6. Cloak VPN

Cloak VPN MaciPhone iPad

1G 2
6 VPN SecurityKiss

 VPN
Virtual Private Server VPSDedicated Server Cloud Computing
PPTPL2TP OpenVPN VPN

 PPTP VPN
VPN VPSVirtual Private Server PPTP VPN
Mac OS X Terminal Linux Windows
Putty

1 VPS
Xen OpenVZ VPS Ubuntu
VPS VPN

VPS 5 Google

2 VPS

ssh root@xxx.xxx.xxx.xxx
"xxx.xxx.xxx.xxx" VPS IP "178.18.17.212"

Are you sure you want to continue connecting (yes/no)?

"yes" VPS VPS
1

Host key verification failed.

ssh-keygen -R xxx.xxx.xxx.xxx
"xxx.xxx.xxx.xxx" VPS IP

3 PPTPD

apt-get install pptpd

Do you want to continue [Y/n]?

"Y"

4 VPN IP

nano /etc/pptpd.conf

#localip 192.168.0.1
#remoteip 192.168.0.234-238,192.168.0.245
"#"
"Control" "X" "Y"

"Nano" "Vi"

5 DNS

nano /etc/ppp/pptpd-options

#ms-dns 10.0.0.1
#ms-dns 10.0.0.2

ms-dns 8.8.8.8
ms-dns 8.8.4.4
()
"Control" "X" "Y"

 DNS Google OpenDNS 208.67.222.222 208.67.220.220

6 VPN

nano /etc/ppp/chap-secrets

username pptpd password *

freenuts pptpd 123456 *

Tab

7IPv4

nano /etc/sysctl.conf

#net.ipv4.ip_forward=1
"#" "Delete"
"Control" "X" "Y"

sysctl -p

net.ipv4.ip_forward = 1

iptables -t nat -A POSTROUTING -s 192.168.0.0/24 -o eth0 -j MASQUERADE

10 PPTPD

/etc/init.d/pptpd restart
VPS VPN

Mac Air OS X 10.6 PPTP VPN PPTP

 L2TP VPN
PPTP VPN iPhone Mac OS X L2TP/IPSec (L2TP over
IPSec IPSec L2TP) VPN
VPS Xen L2TP/IPSec VPN VPS PPTP L2TP/IPSec
Mac Linux Windows
Putty
Xen VPS Ubuntu 11.04 10.04

I VPS

ssh root@xxx.xxx.xxx.xxx
"xxx.xxx.xxx.xxx" VPS IP "178.18.17.30"

P.S.:
PPTP

II OpenSwan
"aptitude install openswan" OpenSwan VPS
OpenSwan

aptitude install build-essential

"y"

aptitude install libgmp3-dev gawk flex bison

 "y"

wget http://www.openswan.org/download/openswan-2.6.35.tar.gz

tar xzvf openswan-2.6.35.tar.gz

cd openswan-2.6.35

make programs

make install
OpenSwan

a2.6.35 OpenSwan
b

III IPSec
OpenSwan IPSec IPSec L2TP
1

vi /etc/ipsec.conf
"dG" "i"

version 2.0 config setup nat_traversal=yes

virtual_private=%v4:10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12,%v4:25.0.0.0/8,%v6:fd00::/8,%v6:fe80::/10 oe=off
protostack=netkey conn %default forceencaps=yes conn L2TP-PSK-NAT rightsubnet=vhost:%priv also=L2TP-PSK-noNAT
conn L2TP-PSK-noNAT authby=secret pfs=no auto=add keyingtries=3 rekey=no ikelifetime=8h keylife=1h type=transport
left=YOUR.VPS.IP.ADDRESS leftprotoport=17/1701 right=%any rightprotoport=17/%any
YOUR.VPS.IP.ADDRESS VPS IP 178.18.17.30
"ESC" "Y" "i" IP "ESC"
"YOUR.VPS.IP.ADDRESS" "x"

 ":wq"

Vi "i" "ESC"

vi /etc/ipsec.secrets
"i"

YOUR.VPS.IP.ADDRESS %any: PSK "YourSharedSecret"

178.18.17.30 %any: PSK "123456abcdef"

Tab
"ESC" ":wq"

for each in /proc/sys/net/ipv4/conf/*

do
echo 0 > $each/accept_redirects
echo 0 > $each/send_redirects
done

service ipsec restart

"ipsec verify"

"ipsec.conf"

IV L2TP
IPSec L2TP VPN

cd ..
VPS

aptitude install xl2tpd

"y"

vi /etc/xl2tpd/xl2tpd.conf
"dG" "i"

[global]
; listen-addr = 192.168.1.98
[lns default]
ip range = 10.1.1.2-10.1.1.255
local ip = 10.1.1.1
require chap = yes
refuse pap = yes
require authentication = yes
name = LinuxVPNserver
ppp debug = yes
pppoptfile = /etc/ppp/options.xl2tpd
length bit = yes
"ESC" ":wq"

V xl2tpd
VPS PPP "aptitude install ppp" PPP

vi /etc/ppp/options.xl2tpd
"i"

require-mschap-v2
ms-dns 8.8.8.8
ms-dns 8.8.4.4
asyncmap 0
auth
crtscts
lock
hide-password
modem
debug
name l2tpd

proxyarp
lcp-echo-interval 30
lcp-echo-failure 4
"ESC" ":wq"

8.8.8.8 8.8.4.4 208.67.222.222 208.67.220.220

vi /etc/ppp/chap-secrets
"i"

username l2tpd password *

freenuts l2tpd 123456 *

"tab" ":wq"

service xl2tpd restart

VIIP
VPN

vi /etc/sysctl.conf
"#net.ipv4.ip_forward=1" "x" "#" ":wq"

sysctl -p

net.ipv4.ip_forward = 1
3

iptables -t nat -A POSTROUTING -s 10.1.1.0/24 -o eth0 -j MASQUERADE

L2TP/IPSec VPN VPS iptables ipsec

vi /etc/rc.local
"exit 0"

for each in /proc/sys/net/ipv4/conf/*

do
echo 0 > $each/accept_redirects
echo 0 > $each/send_redirects
done
iptables -t nat -A POSTROUTING -s 10.1.1.0/24 -o eth0 -j MASQUERADE
/etc/init.d/ipsec restart
L2TP/IPSec VPN

 OpenVPN
VPN PPTP L2TP/IPSec Xen OpenVPN Xen OpenVZ VPS

10 OpenVPN VPS PPTP

L2TP/IPSec OpenVPN Xen VPS Ubuntu Mac Linux
Windows Putty

I VPS

ssh root@xxx.xxx.xxx.xxx
xxx.xxx.xxx.xxx VPS IP 178.18.17.142
PPTP

II OpenVPN

apt-get install openvpn

"y"

III easy-rsa

cp -R /usr/share/doc/openvpn/examples/easy-rsa /etc/openvpn
easy-rsa OpenVPN

IV
"yes/no" "yes"

cd /etc/openvpn/easy-rsa/2.0
. ./vars
./clean-all
./build-ca
./build-key-server server
./build-key client
./build-dh

 "client"

V iptables
OpenVPN

1 IP

vi /etc/sysctl.conf
"#net.ipv4.ip_forward=1" "x" "#" ":wq"

sysctl -p

net.ipv4.ip_forward=1
3 iptables

iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth0 -j SNAT --to 178.18.17.142

"178.18.17.142" VPS IP
OpenVZ VPS "eth0" "venet0"

VI VPS OpenVPN

# vi /etc/openvpn/server.conf
"i"

port 1194
proto udp
dev tun
ca /etc/openvpn/easy-rsa/2.0/keys/ca.crt
cert /etc/openvpn/easy-rsa/2.0/keys/server.crt
key /etc/openvpn/easy-rsa/2.0/keys/server.key
dh /etc/openvpn/easy-rsa/2.0/keys/dh1024.pem
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "redirect-gateway def1 bypass-dhcp"
push "dhcp-option DNS 8.8.8.8"
push "dhcp-option DNS 8.8.4.4"
client-to-client
duplicate-cn
keepalive 10 120
comp-lzo

user nobody
group nogroup
persist-key
persist-tun
status openvpn-status.log
log /var/log/openvpn.log
verb 3
"esc" ":wq"
8.8.8.8 8.8.4.4 208.67.222.222 208.67.220.220

VII OpenVPN

# /etc/init.d/openvpn start

VIII OpenVPN

vi /etc/openvpn/easy-rsa/2.0/keys/client.conf
"i"

client
dev tun
proto udp
remote 178.18.17.142 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
comp-lzo
verb 3
redirect-gateway
script-security 2
"178.18.17.142" VPS IP
"esc" ":wq"

IX
VPS iptables

vi /etc/rc.local
"i" "exit 0"

iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth0 -j SNAT --to 178.18.17.142

openvpn /etc/openvpn/server.conf
178.18.17.142 VPS IP "esc" ":wq"
Xen VPS OpenVZ "eth0" "venet0"

X
OpenVPN

client.conf
ca.crt
client.crt
client.key
Fetch (Mac)WinSCP (Windows) SFTP Mac SSH

cd /etc/openvpn/easy-rsa/2.0/keys/

scp ca.crt client.crt client.key client.conf air@68.68.40.151:

"air" "68.68.40.151" IP
"ifconfig" "ppp0"

inet IP "ppp0" SCP VPS

"yes" 4

3
OpenVPN Configurations OpenVPN

 SSH
SSH Secure Shell,
SSH

5 SSH
SSH
SSH
5 SSH

1. Alidage

Alidage Enter SSH

2. Onlybird

Onlybird SSH
SSH 4 9999 22

3. BlueSSH

 BlueSSH SSH SSH

80 443

4. Usassh

Usassh 2 SSH 22
80 443

5. Tor VPN

Tor VPN Trial 1 GB SSH

SSH OpenVPN
5 SSH 4

 VPS SSH
VPS PPTPL2TP/IPSec OpenVPN SSH
VPS SSH

I VPS

Windows SSH Tunnelier , Mac SSH Issh

ssh -N -D 7070 root@94.249.184.93

"94.249.184.93" VPS IP "Return" VPS
VPS VPN VPS SSH VPN

VPS SSH
4 VPS :

1 VPS

SSH root@94.249.184.93
"94.249.184.93" VPS IP

groupadd internetfreedom
"internetfreedom"

useradd -d /home/freenutsdotcom -m -g internetfreedom -s /bin/false freenutsdotcom

"internetfreedom" SSH "freenutsdotcom" SSH VPS

passwd freenutsdotcom
( "123456")
SSH

ssh -N -D 7070 freenutsdotcom@94.249.184.93

"freenutsdotcom" "94.249.184.93" VPS IP

II
VPS Socks IP 127.0.0.1 7070 Firefox Chrome

1 Firefox

Firefox

Preference > Advanced > Network > Settings

2 Chrome

 Chrome

Preference > Under the Hood > Network > Change Proxy Settings
HTTPSSL FTP IP

 SSH
SSH

Windows Putty Bitvise SSH Client (Tunnelier) Mac SSH Tunnel Manager
iSSH-improved

 SSH
SSH
Mac OS X Terminal SSH

1. SSH
SSH 4

Server s4.alidage.org
Username guest
Password guest29080212737358
Port 22
(Alidage.org) SSH
2. SSH

SSH -N -D 7070 @

SSH -N -D 7070 guest@s4.alidage.org

22 SSH 22 80 -p

SSH -N -p -D 7070 @

SSH -N -p 80 -D 7070 guest@s4.alidage.org

SSH

3. Socks
Socks IP 127.0.0.1 7070

 Chrome Safari Firefox IEOpera

SSH

 SSH Tunnel Manager SSH

Mac OS X SSH
SSH
SSH Tunnel Manager
Dock Configuration SSH

Name SSH alidage;

Login guest;
Hosts s4.alidage.org;
Port 22
(Alidage.org) SSH SSH
Options Enable SOCKS4 proxy 7070 port

Configuration SSH

SSH Tunnel Manager SSH

Socks IP 127.0.0.1 7070

 iSSH-improved SSH
SSH Tunnel Manager SSH
iSSH-improved Mac SSH

iSSH_alpha1.app.zip iSSH iSSH-improved

Preference () SSH

SSH 4

Remote Address ssh.unssh.com

Port 9999
Username onlybird
Password
Onlybird SSH
Connect () SSH
iSSH-improved SSH
iSSH-improved


iSSH-improved SSH SSH Tunnel
Manager

 Putty SSH
Mac TerminalSSH Tunnel Manager iSSH-improved SSH
Windows Putty Bitvise SSH Client Putty SSH

1. Putty

PuTTY Download Page putty.exe

2. SSH

putty.exe Section SSH

3.

 Category Port forwarding

Connection SSH Tunnels

Source port 7070 Dynamic Add

4. SSH

Session Saved Sessions SSH Save

SSH

5. SSH

 Open SSH SSH

Putty
SOCKS 127.0.0.1:7070 SSH
Bitvise SSH Client SSH

 Bitvise SSH Client SSH

Putty Terminal Bitvise SSH Client Tunnelier SSH Tunnel Manager
Windows Bitvise SSH Client SSH
Bitvise SSH Client

Bitvise SSH Client installer

Bitvise SSH Client
SSH

Bitvise SSH Client SSH

1.
2.
3.
4.

Host IP
Port:
Username
Password Initial meth password

 Putty Services Enabled Listen Port 1080 7070

SSH

Login
Host Key Verification

 Accept and Save

Toterm Error

SSH
Putty SOCKS 127.0.0.1:7070 SSH

ProxySSH VPN
Proxy SSH VPN
Proxy SSH VPN

1 Proxy

Proxy ()
2 SSH

SSH Secure Shell, SSH

SSH
SSH + SSH

3 VPN

 http://en.wikipedia.org/wiki/Virtual_private_network

VPNVirtual Private Network

VPN SSH SSH Proxy

Proxy SSH VPN

iTunes
Proxy SSH VPN

 Google Reader
VPNSSHProxy
Google Reader () RSS feed
Google Reader Google Reader

1 RSS feed
RSS feed Google Reader

RSS feed Page2RSS URL RSS feed

RSS feed URL Google Reader

2
RSS feed Google Reader

 Google Reader https://

Google Reader http http https

Google Reader RSS feed
Twitter Facebook Google+ VPNSSHProxy

 Hosts
GFWVPNSSHProxy
Hosts

1. IP

Facebook Twitter YouTube IP IP

OpenDNS facebook.com Check this domain IP

2. IP

IP
Ping Windows cmd.exe Mac OS
Terminal

ping 66.220.152.16

 66.220.152.16 Facebook IP Ping IP

timeout IP Hosts

3. Hosts

Hosts DNS IP GFW

Windows Hosts

C:\WINDOWS\system32\drivers\etc
Mac OS Hosts

sudo vi /private/etc/hosts
Hosts IP Facebook

66.220.152.16 facebook.com
66.220.152.16 www.facebook.com
IP IP facebook.com
www.facebook.com Facebook developers.facebook.com
IP
Facebook http https
Facebook

https://facebook.com

https://www.facebook.com
Hosts IP
Twitter VPNSSHProxy

 gogoCLIENT
IPv4 IPv6 Facebook GoogleTwitter IP
IPv6 IPv6

gogoCLIENT IPv6

1 gogo6

gogoCLIENT Sign Up Facebook GoogleTwitter gogo6

2 gogoCLIENT

 gogoCLIENT
gogoCLIENT 32 64 Windows Basic VersionHome Access Version

gogoCLIENT Linux/Unix/MacOS/BSD MAKE

PDF Guide) Windows gogoCLIENT

3 gogoClIENT

GogoClient Connect IPv6

3.1

 IPv6

.sixxs.org
Twitter

http://twitter.com.sixxs.org
3.2

http://gfw-proxy.co.cc/proxy.pac

3.3 Hosts

 hosts IPv4 gogoCLIENT hosts IPv6

hosts

C:\WINDOWS\system32\drivers\etc
Google GoogleYouTubeTwitter IPv6 hosts

Google IPv6 hosts


GFW IP
) A B B

1.
2. Ping;
3. WebSitePulse;
4. 10
VPNSSHProxy

VPNSSHProxy

IP IP
GFW

 Ping
Ping IP
IP
IP Ping IP Facebook
IPPing
Windows cmd.exe Mac OS Terminal

ping twitter.com
twitter.com
timeout

VPN Ping

Ping IP IP

Ping

10
Ping WebSitePulse
WebSitePulse 10

1. Just Ping

Just Ping 50 ping Okey

Packets lost (100%)

2. Watch Mouse

Just Ping, Watch Mouse 30

3. HostTracker

HostTracker 50 Ping
OK

4. Down For Everyone Or Just Me

Down For Everyone Or Just Me Up

5. IsUp.Me

IsUp.Me Down For Everyone Or Just Me

6. Down Or Not

Down Or Not serving quota

7. Down Or Is It Just Me

Down Or Is It Just Me

8. Checksite.Us

Checksite.Us

9. Up Or Down

Up Or Down

10. DOJ.me

DOJ.me (Down Or Just Me)

10 Ping

 WebSitePulse
, GFW IP
Ping
WebSitePulse

WebSitePulse GFW jingpin.org

Perform Test

StatusFailedTime out Status

OK

WebSitePulse GFW


GFW

10
GFW Facebook

10

1. Facebook

2. Twitter

3. YouTube

4. Blogger

5. Technorati

6. Dailymotion

7. Picasa

8. Plurk

9. Hellotxt

10. Dropbox

 10 VPNSSHProxy 10

 Facebook
Free Nuts Facebook 10 Facebook
Facebook 6

1
2
3
4
5
6
Facebook 2 15
2 Facebook
Facebook VPN
IM+ Facebook
SocialScope Facebook Twitter

6 2012 Facebook

200964

 Twitter
Amnesty

10 17 @wangyi09 @wxhch Twitter

10 1 Twitter

Twitter
Twitter Twitter

Twitter

Twitter



1988 4
1988 10

6
1988
1

SocialScope

Check-in SocialScope

10

10

 GFW
GFW

GFW
YouTubeTwitter Facebook
GFW
GFW

100 Proxy SSHVPN

Tor
GFW

Tor
GFW