this post was submitted on 21 Jul 2025
26 points (93.3% liked)

Privacy

40216 readers
517 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
k_o_t@lemmy.ml
tmpod@lemmy.pt
Yayannick@lemmy.ml
ranok@sopuli.xyz
26
Bypass blocked VPN restrictions (lemmy.dbzer0.com)
submitted 6 days ago by moe93@lemmy.dbzer0.com to c/privacy@lemmy.ml
15 comments fedilink hide all child comments
 

I have recently been finding myself on a network (cellular) that blocks access to VPN. I have tried Wireguard on multiple ports using IVPN and Windscribe with no luck. Similarly tried OpenVPN and IKEv2.

I also tried using Windscribe’s “stealth” protocol and IVPN’s obfuscation protocol but again with no luck.

I refuse to rawdog the internet like that and was hoping to get advice on how to work around that nonsense.

I am on iOS if that matters.

top 15 comments
sorted by: hot top controversial new old
[–] Geodad@lemmy.world 17 points 6 days ago (1 children)

Please name and shame your provider. I'd like to know which ones to avoid.

[–] moe93@lemmy.dbzer0.com 12 points 6 days ago

I am on a trip and using a local carrier in the country I am currently staying at, carrier is called Zain.

[–] SheeEttin@lemmy.zip 14 points 6 days ago* (last edited 6 days ago)

A VPN isn't rawdogging the Internet. For that you should use stuff like ad blockers. A VPN only protects traffic inspection by on-path attackers like ISPs, though HTTPS mitigates most of that, leaving only metadata. It also changes the apparent origin of your connection.

If possible, I'd change providers.

[–] dajoho@sh.itjust.works 5 points 5 days ago

Try setting your vpn to listen on UDP, port 53 (usually used by DNS. If that fails, it's going to be some sort of deep packet inspection, yes.

[–] slackness@lemmy.ml 5 points 5 days ago

You can use Tor: https://orbot.app/

Cheapest way to not be in this situation is to run an exit node on your home network and route your traffic through when you're travelling (dead simple with Tailscale).

Also try Mullvad's circumvention methods.

[–] shortwavesurfer@lemmy.zip 6 points 6 days ago* (last edited 6 days ago) (1 children)

You could potentially get your own VPS server and set that up as a VPN server that way you're not connecting to a known VPN.

Edit: You might also try using Tor.

[–] moe93@lemmy.dbzer0.com 2 points 6 days ago (1 children)

I have a Wireguard tunnel running on my home server back home in the US. I am currently outside of the US and that Wireguard tunnel won’t connect if I am on cellular connection for this one specific provider that I am using atm.

I have never attempted to use Tor as a VPN on my iOS device, how is the performance in terms of making Signal calls for example?

[–] shortwavesurfer@lemmy.zip 2 points 5 days ago (1 children)

Oh, I see. I don't think you can make calls over tor because I think it's TCP only. Not UDP.

Could it be an IP addressing problem by chance where the telecom provider doesn't support say IPv6 while your home network is IPv6? If so, they may not be blocking it, so much as it's not possible to make the connection to begin with.

[–] moe93@lemmy.dbzer0.com 1 points 5 days ago (1 children)

My home server VPN is IPv4. The VPN provider I have uses both IPv4/6. Neither of those work.

At this point I am inclined to believe the network carrier is performing DPI as I also can’t use OpenVPN on TCP 80 and TCP 443, which are generally hard to block unless provider is intentionally looking into it…at least that’s my understanding.

[–] shortwavesurfer@lemmy.zip 1 points 5 days ago* (last edited 5 days ago)

That very well could be, as I mentioned earlier, you might get yourself a VPS and set up an SSH tunnel or something like that, but otherwise I have no idea.

I do know that you can use signal over tor because I do so, but I only use it for the sending messages and voice messages part. As I said, I think the audio call uses UDP and tor is TCP only to the best of my knowledge.

The only other thing I could think of would be to try a mix net such as Nym.

[–] hellfire103@lemmy.ca 4 points 6 days ago* (last edited 6 days ago)

Honestly, this sounds like a job for Tor. Install Orbot, possibly enable a bridge, and you should be good to go. Onion Browser is recommended for use with Tor, but Safari will work just fine.

I have never tried calling over Tor, but I have never had an issue with the speed before (although it is inherently slower than a VPN).

Tor Bridge Types

  • obfs4 makes your traffic appear "random"
  • snowflake disguises your traffic as VoIP
  • meek-azure makes it look like you're connecting to Microsoft services
  • meek-amazon makes it look like you're connecting to AWS
  • meek-google makes it look like you're connecting to Google
[–] furrowsofar@beehaw.org 5 points 6 days ago (1 children)

Usually openvpn via tls port 443 is the least blocked.

[–] user224@lemmy.sdf.org 3 points 6 days ago

I also had luck with UDP on port 123. On some public WiFi networks I could even connect to internet that way without agreeing to ToS on "login page".

[–] med@sh.itjust.works 1 points 6 days ago (1 children)

Have you tried tailscale with an exit node? Could be worth a test, if it works, some combination of other providers might too

[–] Melody@lemmy.one 1 points 5 days ago

I second tailscale. But this requires you to be using it at home as well.