Hi everyone,
I’m currently facing some frustrating restrictions with the public Wi-Fi at my school. It’s an open Wi-Fi network without a password, but the school has implemented a firewall (Fortinet) that blocks access to certain websites and services, including VPNs like Mullvad and ProtonVPN. This makes it difficult for me to maintain my privacy online, especially since I don’t want the school to monitor me excessively.
After uninstalling Mullvad, I tried to download it again, but I found that even a search engine (Startpage) is blocked, which is incredibly frustrating! Here’s what happened:
- The Wi-Fi stopped working when I had the VPN enabled.
- I disabled the VPN, but still couldn’t connect.
- I forgot the Wi-Fi network and reset the driver, but still no luck.
- I uninstalled the Mullvad, and then the Wi-Fi worked again.
- I tried to access Startpage to search for an up-to-date package for Mullvad, but it was blocked.
- I used my phone to get the software file and sent it over, but couldn’t connect.
- I searched for different VPNs using DuckDuckGo, but the whole site was blocked.
- I tried searching for Mullvad, but that was blocked too.
- I attempted to use Tor with various bridges, but couldn’t connect for some unknown reason.
- I finally settled for Onionfruit Connect, but it doesn’t have a kill switch, which makes me uneasy.
Ironically, websites that could be considered harmful, like adult content, gambling sites and online gaming sites, are still accessible, while privacy-tools are blocked.
I’m looking for advice on how to bypass these firewall restrictions while ensuring my online safety and privacy. Any suggestions or alternative methods would be greatly appreciated! (If any advice is something about Linux, it could be a Problem, since my school enforces Windows 11 only PC’s which is really really igngamblingThanks in advance for your help
edit: did some formatting
edit2: It is my device, which I own and bought with my own money. I also have gotten in trouble for connecting to tor and searching for tor, but I stated that I only used it to protect my privacy. Honestly I will do everything to protect my privacy so I don’t care if I will get in trouble.
edit 3: Thanks for the suggestions, if I haven’t responded yet, that’s because I don’t know what will happen.
Airvpn, then use their advanced config to create a 443 tcp tunnel out to a single server. Then use that server’s IP in your OpenVPN config file. Route all traffic including dns inside the tunnel.
Traffic will look like all other web traffic - encrypted on standard web ports. You won’t even need to do a DNS lookup to start with and airvpn uses generic rDNS so it’s not super easy to figure out from their perspective.
Typically, using your own VPN should suffice. Depending on your situation you can do other things as well. If you are unable to download these tools on the school network in question; do not attempt to do so again. Use a public or other network connection elsewhere to obtain the tools you need to bypass their crap.
For example, NextDNS could be helpful. By running their client app; ( https://github.com/nextdns/nextdns/wiki/Windows ) you can make sure all your DNS requests are encrypted. Similarly you could simply set up a local DNS server that you point Windows at which can redirect those requests over DNS-Over-(HTTPS or TLS) to a DNS provider of your choosing.
DNS over HTTPS is your best bet because they can’t Man In The Middle and replace it (DNS Poison) like good old DNS. They will still be able to see the IP addresses you are connecting to unless you proxy those connections. nativeproxy uses Chromium’s stack so it is much harder to detect. There are UI frontends for it if you prefer but I’ve never used them. ProtonVPN also has a stealth protocol that I’ve heard is good, though I don’t know too much about it.
Good on you for trying to get around it. That kind of curiosity is a great way to develop your lateral thinking skills. You didn’t ask for a lecture and people giving you one should go back to stack overflow comments. If you want to take the risks of it, that is up to you and you are likely to fuck up. That being said, you aren’t the only person likely go get in trouble if you fuck up and, unlike you, IT will depend on their job financially. If you do it well enough and make sure you don’t get caught by someone seeing your screen or blagging around the school that you did it, that won’t be an issue.
IT departments also read comments in threads like this to find the current trends of how students are trying to get around their web blockers so keep in mind that you will need to keep your skills up to date.
Seems like Tor snowflake is a proxy that makes your internet traffic appear as a video call. Its purpose is to circumvent censorship, but it may get around firewalls as well. I have no experience bypassing firewalls using snowflake, but it may be a viable option (someone correct me if I’m wrong) https://snowflake.torproject.org/
Don’t use the school’s wi-fi? I’m sure there are other options to you.
