>On Thursday, January 25th, 2024 at 1:25 AM, Jochen Bern ><jochen.b...@binect.de> wrote:
> On 24.01.24 13:31, Hans via Openvpn-users wrote: > > > From: "Gert Doering" <g...@greenie.muc.demailto:g...@greenie.muc.de> > > Date: Wednesday, 24 January 2024 at 13:03:30 > > > > > On Wed, Jan 24, 2024 at 11:49:43AM +0000, Peter Davis via Openvpn-users > > > wrote: > > > > > > > How can I make OpenVPN look like an HTTPS connection? > > > > > > You can't. OpenVPN is not https, so even if you use tcp/443, on a close > > > enough look it will be clear "this is not HTTPS". > > > > How about using stunnel instead? > > > stunnel may be able to wrap your (TCP) traffic into TLS, whose > unencrypted parts may look more or less like the TLS interwoven into > HTTPS, but it still won't make your hours-long single-server VPN > connection with keepalives and key renegs in regular intervals and > carrying an SSH login with its single-keystroke upstream packets look > like you browsed a couple websites. > > Also, don't forget to configure the VPN server with --port-share, in > case one of the nation-level censors you're trying to fool gets the idea > of looking at your "interesting website" himself ... > > Kind regards, > -- > Jochen Bern > Systemingenieur > > Binect GmbH > _______________________________________________ > Openvpn-users mailing list > Openvpn-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/openvpn-users Hi, Can you tell me more about the --port-share? _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
