←back to thread

Ask HN: The government of my country blocked VPN access. What should I use?

1308 points rickybule | 1 comments | 28 Aug 25 16:43 UTC | HN request time: 0.213s | source

Indonesia is currently in chaos. Earlier today, the government blocked access to Twitter & Discord knowing news spread mainly through those channels. Usually we can use Cloudflare's WARP to avoid it, but just today they blocked the access as well. What alternative should we use?
Show context
reisse ◴[28 Aug 25 18:30 UTC] No.45055399[source]
You've come to a wrong place to ask. Most people here (judging by recommendations of own VPN instances, Tor, Tailscale/other Wireguard-based VPNs, and Mullvad) don't have any experience with censorship circumvention.

Just look for any VPNs that are advertised specifically for China, Russia, or Iran. These are the cutting edge tech, they may not be so privacy-friendly as Mullvad, but they will certainly work.

replies(13): >>45055555 #>>45055571 #>>45055581 #>>45055597 #>>45055621 #>>45055623 #>>45055738 #>>45055751 #>>45055839 #>>45056181 #>>45056448 #>>45056670 #>>45056859 #
kragen ◴[28 Aug 25 19:00 UTC] No.45055738[source]
VPNs that are advertised are for-profit products, which means:

1. They are in most cases run by national spy agencies.

2. They will at least appear to work, i.e., they will provide you with access to websites that are blocked by the country you are in. Depending on which country's spies run the system, they may actually work in the sense of hiding your traffic from that country's spies, or they may mark you as a specific target and save all your traffic for later analysis.

My inclination is to prefer free (open-source) software that isn't controlled by a company which can use that control against its users.

replies(3): >>45055752 #>>45055794 #>>45056086 #
reisse ◴[28 Aug 25 19:30 UTC] No.45056086[source]
Well, you have to host your free open-source VPN software somewhere. And then, (N. B.: technical and usability stuff aside, I'm talking only about privacy bits here) everything boils down to two equally nightmarish options.

First, you use well-known cloud or dedicated hoster. All your traffic is now tied to the single IP address of that hoster. It may be linked to you by visiting two different sites from the same IP address. Furthermore, this hoster is legally required to do anything with your VPN machine on demand of corresponding state actors (this is not a speculative scenario; i. e. Linode literally silently MitMed one of their customers on German request). Going ever further, residential and company IPs have quite different rules when it comes to law enforcement. Seeding Linux ISOs from your residential IP will be overlooked almost everywhere (sorry, Germany again), but seeding Linux ISOs from AWS can easily be a criminal offense.

Second, you use some shady abuse-proof hosting company, which keeps no logs (or at least says that) and accepts payments in XMR. Now you're logging in to your bank account from an IP address that is used to seedbox pirate content or something even more illegal, and you still don't know if anyone meddles with your VPN instance looking for crypto wallet keys in your traffic.

VPN services have a lot of "good" customers for a small amount of IP addresses, so even if they have some "bad" actors, their IPs as a whole remain "good enough". And, as the number of customers is big, each IP cannot be reliably tied to a specific customer without access logs.

replies(1): >>45056225 #
kragen ◴[28 Aug 25 19:42 UTC] No.45056225[source]
Tor is a third option, at least as one layer, and seeding Linux ISOs is not, to my knowledge, a criminal offense in any jurisdiction, not even in China. I don't know where you got that idea.
replies(1): >>45056434 #
close04 ◴[28 Aug 25 20:03 UTC] No.45056434[source]
I read that as a euphemism for piracy.
replies(1): >>45057361 #
kragen ◴[28 Aug 25 21:40 UTC] No.45057361[source]
Pirating Linux ISOs is legal, though.
replies(2): >>45058043 #>>45066114 #
1. some_random ◴[29 Aug 25 16:24 UTC] No.45066114[source]
It's not actually Linux ISOs that they're pirating.