[Q] Another Ad Blocker question... - Thunderbolt Q&A, Help & Troubleshooting

I have used adfree for a long time and never had any issues until the TB. For some reason the ads are still all over the place. I have updated host files and all I know to do... any suggestions?

i'm assuming that you're rooted, right? i'd verify that your hosts file in /etc has entries other than for the local host.
alternatively, you could try using dolphin hd with the ad-blocker add-on.

open the /system/etc/hosts file on your android phone via the command line or with a file explorer (must be rooted and have write permissions for /etc/system/hosts)
add the ad server list from http://pgl.yoyo.org/adservers/ to the file
(if you change the IPs to 0.0.0.0 instead of 127.0.0.1, the ads will be killed faster, since they wont die in the loopback with 127.0.0.1, since 0.0.0.0 is an invalid address)
If you find ad server lists from elsewhere, add it to the file and filter out extras doing a unique sort on it. I normally keep the same list on my desktop/laptop and phone and add to it as I go using something like live http headers in firefox to find new ad servers
On a linux box you can do a unique sort with:
sort -u oldFileName > newFileName
Here is my list of adservers I block from found lists and ones I added myself.
http://pastebin.com/pF1QNEm2

Related

[Q] Why Android ignores /system/etc/hosts file?

Hi,
i edited /system/etc/hosts file but it looks that my edit is ignored by Android.
In "hosts" file i added line with text "1.1.1.1 customdomain"
And then i used "ping customdomain" command in Terminal Emulator but i got error "unknown host am".
I doesn't ignore the hosts file, did you edit it with r/w permissions?
That's how some AdBlock apps on market are working.
They just download huge (700K) host file and most of ads are history. (also in ads based applications)
PS: try something with your local host 127.0.0.1 first... you have to reboot your device after modification.
evilkorn said:
I doesn't ignore the hosts file, did you edit it with r/w permissions?
Click to expand...
Click to collapse
AFAIK, i did. I edited it using "FS File Explorer" with r/w turned on... Then i restarted phone and my change is still there.
Vlad_z said:
That's how some AdBlock apps on market are working.
They just download huge (700K) host file and most of ads are history. (also in ads based applications)
PS: try something with your local host 127.0.0.1 first... you have to reboot your device after modification.
Click to expand...
Click to collapse
Yes, i found posts about these ad blocks when i read all these forums about this...
I can ping "localhost", but i cant ping this host i added there...
EDIT:
I added record "127.0.0.1 bbb", then i restarted phone and i tried to run "ping bbb", but i got error msg about unresolved hostname aswell...
I have Nexus S and latest CyanogenMod 7.0.3 if it can help...
I got it!
I was playing etc... And i found that i need to put 1 empty line at end of file to make system to reload file!
No need to restart phone at all, i can ping new hostname immediatelly.
Now i can ping new hostname. But when i open it in Android browser, i get new exciting error msg:
Sorry The requested server does not have a DNS entry!
Any ideas now?
mathdotrandom: Block ads on PC & Android with an uber HOSTS file!
oktam said:
AFAIK, i did. I edited it using "FS File Explorer" with r/w turned on... Then i restarted phone and my change is still there.
Yes, i found posts about these ad blocks when i read all these forums about this...
I can ping "localhost", but i cant ping this host i added there...
EDIT:
I added record "127.0.0.1 bbb", then i restarted phone and i tried to run "ping bbb", but i got error msg about unresolved hostname aswell...
I have Nexus S and latest CyanogenMod 7.0.3 if it can help...
Click to expand...
Click to collapse
This approach and file "Block ads on PC & Android with an uber HOSTS file!" has work flawlessly on multiple device all with various firmwares and versions of Android.
Hi, I've included some domains I want blocked in my hosts file so as to redirect them to "127.0.0.1" I've made sure the permissions are set correctly. I've made sure there is an extra linebreak at the end of the file. I've rebooted. In the terminal a PING request to the domain returns from the localhost. And yet I can still access the domain through the web browser.
What gives?
PS: I have a Nexus One 2.3.6 retail that I rooted using the DoomLord zerg rush exploit without unlocking the bootloader
And I have cleared the browser cache
Please use the Q&A Forum for questions Thanks
Moving to Q&A
have the same issue.
added an entry to etc/hosts (after remounting rw) rebooted. open a terminal... ping x.com goes to correct IP... browser (stock and others) goes to real dns resolved one.
android is full of brain [email protected]%
I can still access websites listed in the hosts file. Permission is -rw-r--r--
I'm using chrome beta for android.
This issue hasn't been fixed yet. Chrome still ignores the HOSTS file in \system\etc
Apparently the HOSTS file must be in UNIX file format. One way to do this is use Notepad++ and convert the file by going to EDIT --> EOL Conversion --> Unix.
If you ping a domain in the hosts file and it goes to 127.0.0.1 or 0.0.0.0 then your hosts file is formatted correctly.
But Chrome will ignore the domains in the hosts even if it's formatted correctly. Perhaps Google intentionally does this to prevent anyone from blocking their tracking tools?
I would bet there are millions of Android devices that have a hosts file but it's not working as everyone thinks it should be.
EDIT - Solution found: turn off "Reduce data usage" in Chrome
shizat63 said:
turn off "Reduce data usage" in Chrome
Click to expand...
Click to collapse
Wow. Any idea what does it trigger that affect that?
My problem is with stock browser on cyanogenmod gingerbread.
Sent from my Nexus One using xda app-developers app
chrome local domain fail
shizat63 said:
EDIT - Solution found: turn off "Reduce data usage" in Chrome
Click to expand...
Click to collapse
Unfortunately it does not work for me on my GT-I9305 (I9305XXUEML5).
For the record here is what I did:
Added domain.local to /system/etc/hosts:
Code:
[email protected]:/ # mount -o rw,remount -t ext4 /dev/block/mmcblk0p13 /system
[email protected]:/ # echo "127.0.0.1 domain.local" >> /system/etc/hosts
[email protected]:/ # mount -o ro,remount -t ext4 /dev/block/mmcblk0p13 /system
[email protected]:/ # grep domain.local /system/etc/hosts
127.0.0.1 domain.local
I can now ping domain.local:
Code:
[email protected]:/ # ping domain.local
PING domain.local (127.0.0.1): 56 data bytes
64 bytes from 127.0.0.1: seq=0 ttl=64 time=0.220 ms
64 bytes from 127.0.0.1: seq=1 ttl=64 time=0.186 ms
64 bytes from 127.0.0.1: seq=2 ttl=64 time=0.242 ms
^C
--- domain.local ping statistics ---
3 packets transmitted, 3 packets received, 0% packet loss
round-trip min/avg/max = 0.186/0.216/0.242 ms
Then I set up port forwarding in chrome: chrome://inspect/#devices -> Port forwarding... -> 8080 x.x.x.x:8080
After this I can telnet into domain.local from my GT-I9305:
Code:
[email protected]:/ # telnet domain.local 8080
GET / HTTP/1.0
HTTP/1.0 200 OK
Date: Mon, 28 Apr 2014 11:47:42 GMT
Server: openresty
X-Powered-By: PHP/5.4.12
Connection: close
Content-Type: text/html; charset=UTF-8
<!DOCTYPE html>
<html>
...
</html>
Connection closed by foreign host
So far so good.
Unfortunately if I open chrome on my mobile and enter domain.local:8080/ I get "Oops! Google Chrome could not connect to domain.local"
shizat63 said:
EDIT - Solution found: turn off "Reduce data usage" in Chrome
Click to expand...
Click to collapse
Worked! Thanks a lot. The fact, that adaware has stopped working was driving me crazy.
Howgie
shizat63 said:
turn off "Reduce data usage" in Chrome
Click to expand...
Click to collapse
It was turned on and turbo-mode in Opera was turned on. I've been sure hosts file is ignored!
The extra line was what I needed to fix my problem with my hosts file. As soon as I saved and refreshed it went to the site I needed it to.
oktam said:
I got it!
I was playing etc... And i found that i need to put 1 empty line at end of file to make system to reload file!
No need to restart phone at all, i can ping new hostname immediatelly.
Now i can ping new hostname. But when i open it in Android browser, i get new exciting error msg:
Sorry The requested server does not have a DNS entry!
Any ideas now?
Click to expand...
Click to collapse
Hosts file is working when i use directly from chrome and default browser, but when i use google app and then it is showing to choose chrome or internet browser it is not blocking site in hosts file after my chrome selection.
Plz.....i need help....
Was anyone able to get Android to read your hosts file? I can't even ping the site properly using the terminal emulator.
I've turned off Chrome data saver, made sure the file was saved with Unix line endings and left a blank line at the end of the /system/etc/hosts file.
I did. I copied the hosts file to my computer, edited it then pushed it back to android with rw permission.
It didn't work though until I added the blank line below my last entry (why?), just hit enter after adding your last/only domain name entry and then save.
How to change r/w permissions with Es file explorer.

[Guide]Access Windows PC files directly from Android through Wi-Fi

Found this guide here. . Thought I should share as it might help someone here. Thank the original writer.
Please read the whole guide once before trying. This will help in making the process easy as most of the parts are covered in detail.
1. Introduction:
You got a file in Windows PC and you intend to transfer it to your Android device. The most common way is that we connect the device to system via USB cable. However there are alternatives such as the Bluetooth or Wi-Fi. Bluetooth is a very slow method when compared to USB and Wi-Fi. So let us take Wi-Fi as the medium. Now let me first tell you various advantages and disadvantages regarding USB when compared with WI-Fi:
Disadvantages of USB v/s Wi-Fi
1. The phone should be near to the system = you being near the system too ---- This is avoided. All you need that the PC and device to be connected to the Wi-FI network
2. Cluttering of wires ---- Avoided
3. Drivers may have to be installed ---- No drivers needs to be installed
4. In a whole way, its not very productive ---- Oh very productive
Advantages - the only one is that files transfer speed is high ---- Yes. USB has a upper hand here. Wi-Fi transfer speed is low when compared. But the difference is just a few minutes. We can live with that
So excited to start using the Wi-Fi method? Then make sure you meet the requirements.
2. Requirements:
1. Wi-Fi router - PC should be connected to this either through LAN/ Wi-Fi
2. Install ES File Explorer in your Android device (you can try other file explorers like FX File Explorer, Solid Explorer, Astro File manager). The methodology for other apps are quite similar. I will take ES File Explorer as example as I have found it to be simple and fast.
3. Windows PC with 2000/XP/Vista/7/8 (I have not tested in Windows 8 personally)
4. Administrative access for Windows PC
3. Steps:
Step 1. Install ES File Explorer
Step 2. Find IP Address, make static IP and find system name [optional]
i. Find your IP address - to do this follow the steps as below:
a. Start -> Run (or press Windows key + R)
b. Type "ncpa.cpl" (without quotes) and press enter
c. You will see the Network Connections now
d. Identify the one which is connected to the Wi-Fi router. It will be either the LAN adapter or Wireless adapter. In my case it is the Wireless adapter.
e. Double click on the connection
f. Click on details and here note down the IPv4 Address. Also make not of IPv4 Subnet Mask, Default Gateway and DNS Server.
View attachment 1343982
ii. If you are going by IP address method then it is better yet to make the IP address as static [thank you kjplasma for the tip].
An static IP address means that your system will be having the same IP address all the time and will not be changed anytime later by the router. To set static IP address:
a. Go to Network Connections
b. Double click on the connection
c. Click on properties
d. Double click on - Internet Protocol Version 4 (TCP/IPv4) and fill up the IP address as you have noted them down above.
e. Click on OK for all dialogue boxes.
View attachment 1343983
iii. You can even make note of the system name by checking the properties of “My Computer”. To do this:
a. Go to Start - Right click on My Computer [Shortcut -> Windows + Pause/Break]
b. You can find the computer name under "Computer name, domain, and workgroup settings"
View attachment 1343984
If your going by this method then it is not necessary to note down or change the IP address. However I feel that tracking your system through IP address in ES File Explorer is much more efficient and fool proof. Either the system name or IP address its okay.
Step 3.a. Windows 2000 PC
i. Open ES File Explorer in your device
ii. On top right corner tap on "Local" - select LAN
iii. Tap on "New"
iv. Here you can either scan for your system or Click on Server
v. Here in server field type the IP address (that is IPv4 Address) or the system name
vi. Type in the Username and Password which you use to access your Windows PC
vii. Give a name under "Display as" for easy identification
viii. Tap on OK.
ix. Now you will see an laptop with globe icon. Tap on it and you will see all your files/folder of the system there.
Step 3.b. Windows XP PC:
i. Firstly you will need to enable Guest account by going to Control Panel – User Accounts – Guest Account – Click on "Turn on Guest account". This is because there is no other way I found to access the files in Windows XP in Android device with actual user name and password.
ii. Share the drives or folder you want to access [Refer the Reference Note 1 below to know how to share a folder]
iii. Open ES File Explorer in your device
iv. On top right corner tap on "Local" - select LAN
v. Tap on "New"
vi. Here you can either scan for your system or Click on Server
vii. Here in server field type the IP address (that is IPv4 Address) or the system name
viii. Type in the Username and Password which you use to access your Windows PC
ix. Give a name under "Display as" for easy identification
x. Tap on OK.
xi. Now you will see an laptop with globe icon. Tap on it and you will see all your shared files/folder of the system there.
Step 3.c. Windows Vista/7/8 PC:
i. Share the drives or folder you want to access [Refer the Reference Note 1 below to know how to share a folder]
ii. Open ES File Explorer in your device
iii. On top right corner tap on "Local" - select LAN
iv. Tap on "New"
v. Here you can either scan for your system or Click on Server
vi. Here in server field type the IP address (that is IPv4 Address) or the system name
vii. Type in the Username and Password which you use to access your Windows PC
viii. Give a name under "Display as" for easy identification
ix. Tap on OK.
x. Now you will see an laptop with globe icon. Tap on it and you will see all your shared files/folder of the system there.
Note: If you are using blank password for logging into windows then follow the steps below:
a. Run - gpedit.msc to access Group Policies
b. Navigate to Computer Configuration -> Windows Settings -> Security Settings -> Local Policies -> Security Options
c. Find -> Account: Limit local account use of blank passwords to console logon only
d. Double click on it and select "disable"
View attachment 1343985
Uploaded with ImageShack.us
4. Reference Note 1 - How to share folders:
On Windows XP:
a. Right click on the folder you want to share
b. Go to the sharing tab
c. Click the "If you understand the risk but still want to share the folder, click here"
d. Under "Network Sharing and Security" tick on "Share this folder on the network" and also on "Allow network users to change my files"
e. Click OK
View attachment 1343986
On Windows Vista/7/8:
a. Right click on the folder you want to share
b. Go to the sharing tab
c. Click on "Advanced Sharing"
d. In the next dialog box tick on "Share the folder"
e. Click on "Permissions" and tick on all the checkboxes under allow.
View attachment 1344010
5. Troubleshooting:
1 - The "Login Error"
View attachment 1344070
You might get a login error at times. It happens highly when you use the computer name instead of the IP address and sometimes the error pops up even when using the IP address. You can try the below troubleshooting steps:
a. Delete the connection entry
b. Make a new entry and use the IP address this time
c. If the problem still persists, then try opening it 5-6 times repeatedly by ignoring the error.
d. If the problem still persist, then delete the connection, exit ES File Explorer completely and create a new connection again by using the IP address. This time it should work.
I feel this is a bug in the app. Hope it will be fixed in future.
Note - I was using ES File Explorer before FX File Explorer came to play store. Later after trying FX File Explorer, it had not given any error at all and hence its much more reliable. But for that you will have to pay as the app is out of beta.
2 - Wrong Username/Password even when entering the correct one
This usually happens if you put the system name instead of the IP address in the app. What you can do delete the entry and then close the app and reopen it and try a new connection with the IP address itself as this will solve the issue.
6. Useful tips:
1: You can increase the transfer speed by moving near to the router. The closer you are to the router the higher speed you gain.
2: You can even make shortcut of the folder in the network and place them on the home screen of the app. Do to that on ES File Explorer simply long press on the folder and choose "Add to server list".
7. Other Notes:
1: Please note that no internet connection is required to make this possible. Everything is done through the local network. Take out the idea from your mind that Wi-Fi is only for internet.
2: There are various other apps like KiesAir, AirDroid. But that will require you to be near the PC and access the files through a WebUI. But the guide which I have laid out here works from PC to device directly. You can sit at your living room, kitchen or bedroom or where you like within the Wi-Fi network and you are good to go.
------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Hope you find this guide useful. Please leave feedback and do post here for queries. Thanks!
Nice guide. Looks a lot like the one here.
Do you know Harsha Raj? Might want to give him some credit.
ramjet73
Thanks, but........
Isn't it a lot easier to use gmote ? , also it comes with more features , like control of pc aswell as media streaming between pc, smart phones, smart TV's and game consoles, to name a few ,
ramjet73 said:
Nice guide. Looks a lot like the one here.
Do you know Harsha Raj? Might want to give him some credit.
ramjet73
Click to expand...
Click to collapse
Yes, was about to do the same but was busy with other thread that I found in SGS2 section

How to use openvpn with android

I was a bit confused about how to use OpenVPN on an Android device because there was so little information around. I thought I'd post this to make it easy for others. It turn out to be very simple. I have my Android phone (Note 2, Jellybean) rooted and Busybox installed, but neither is necessary.
The following steps relate to using an Android device with a commercial vpn service (like an anonymizing service among others), but this should help clarify in other situations too.
Step 1: download the OpenVPN config files from your vpn provider.
Step 2: download, install and start "OpenVPN for Android by Arne Schwabe" (O4A) (get it from any android app source, it's free, but donation to the author is optional and its a great app).
Step 3: on the "VPN Profiles" page of O4A, use the folder icon upper right to browse to the .ovpn config file for a server, select, and save it on the following page. The server name will appear on the Profiles page.
Note: Sometimes the server config files include a .p12 file which O4A will want to import, then require a password to decrypt...just uncheck that file (upper left) before saving; later O4A will ask for a password, just leave it blank and hit "OK", it will connect just fine (at least with my vpn provider).
Step 4: open the settings for the server you just imported (icon to the right of the server name), navigate to the "Basic" page, and enter your username and password at the bottom of the page (if your provider uses the u/p type connection). YOU ARE DONE (but, you will need to repeat this for each server you want to use).
Step 5: tap on the server name on the "Profiles" page, O4A will open the log file and you will see it going through the steps of the connection process in both the log and the notification bar . When it's finished successfully, you'll see "connected". You can check the connection in the log file. Also depending on your device the connection will show in the notification bar for as long as its connected. You can disconnect by tapping the notification.
The correct configuration settings for OpenVPN are usually included in the .ovpn file, so you likely won't need to change any config setting in O4A. However, you can add the line "auth-nocache" to the .ovpn file manually or add it on the O4A page "Advanced -> Custom Options". This will prevent the username/password from being cached if that's important to you.
NOTE: Using dnsleaktest.com I have noticed that google dsn servers appear sometimes as a dns server. This might represent a dns leak as there would seem to be no reason, for example, for a European located server to use a U.S. located google dns server. I'm not clear about why the google servers are showing up, maybe someone can verify/clarify.
However, you can force a dns server of your choosing by going to the "IP and DNS" page of the server config settings in O4A, and select "Override DNS Setting by Server". You can then use the default dns servers chosen by the author or enter your own.
Enjoy!
@@
Meditating_Apes said:
I was a bit confused about how to use OpenVPN on an Android device because there was so little information around. I thought I'd post this to make it easy for others. It turn out to be very simple. I have my Android phone (Note 2, Jellybean) rooted and Busybox installed, but neither is necessary.
The following steps relate to using an Android device with a commercial vpn service (like an anonymizing service among others), but this should help clarify in other situations too.
Step 1: download the OpenVPN config files from your vpn provider.
Step 2: download, install and start "OpenVPN for Android by Arne Schwabe" (O4A) (get it from any android app source, it's free, but donation to the author is optional and its a great app).
Step 3: on the "VPN Profiles" page of O4A, use the folder icon upper right to browse to the .ovpn config file for a server, select, and save it on the following page. The server name will appear on the Profiles page.
Note: Sometimes the server config files include a .p12 file which O4A will want to import, then require a password to decrypt...just uncheck that file (upper left) before saving; later O4A will ask for a password, just leave it blank and hit "OK", it will connect just fine (at least with my vpn provider).
Step 4: open the settings for the server you just imported (icon to the right of the server name), navigate to the "Basic" page, and enter your username and password at the bottom of the page (if your provider uses the u/p type connection). YOU ARE DONE (but, you will need to repeat this for each server you want to use).
Step 5: tap on the server name on the "Profiles" page, O4A will open the log file and you will see it going through the steps of the connection process in both the log and the notification bar . When it's finished successfully, you'll see "connected". You can check the connection in the log file. Also depending on your device the connection will show in the notification bar for as long as its connected. You can disconnect by tapping the notification.
The correct configuration settings for OpenVPN are usually included in the .ovpn file, so you likely won't need to change any config setting in O4A. However, you can add the line "auth-nocache" to the .ovpn file manually or add it on the O4A page "Advanced -> Custom Options". This will prevent the username/password from being cached if that's important to you.
NOTE: Using dnsleaktest.com I have noticed that google dsn servers appear sometimes as a dns server. This might represent a dns leak as there would seem to be no reason, for example, for a European located server to use a U.S. located google dns server. I'm not clear about why the google servers are showing up, maybe someone can verify/clarify.
However, you can force a dns server of your choosing by going to the "IP and DNS" page of the server config settings in O4A, and select "Override DNS Setting by Server". You can then use the default dns servers chosen by the author or enter your own.
Enjoy!
Click to expand...
Click to collapse
I'll try . . . . thanks
Thank you for the detailed instructions, but I think that apps like the Open VPN Connect and Totally Free VPN are more convenient. They are free and use the free servers.
How do we save battery? App drains a lot using all day

(Working again)Howto: P769* CM 10.1 T-Mobile Wifi tether block bypass *Root Required*

Note: This is for CM 10.1. For ICS/JB users try my other tutorial: http://forum.xda-developers.com/showthread.php?t=2201062
Here are instructions on how to get tethering working on all of my wifi devices without any special Proxies or VPNs.
This does work for other operating systems/protocols/ports/ and all browsers(Windows,OSX, other tablets etc..) :
The original idea is provided by a google code user in post #122 here: https://code.google.com/p/android/issues/detail?id=38563
*** Root is required ***
*** CM 10.1 is required *** Here is the version I have tested on: http://forum.xda-developers.com/showthread.php?t=2216542 (Other JB and L9 hardware versions may work)
Test Wifi NAT
1.) Backup Rom via CWM recovery.
2.) Enable the built-in wifi tethering from here: Settings --> More... --> Tethering & portable hotspot --> Portable Wi-Fi hotspot(Check this box)
3.) Launch "Terminal Emulator" and figure out your Radio Device Names and IP addresses (Install it from the market if you don't have this app).
a.) `su -`
b.) `netcfg`
***Look for the 3 lines that say "UP" and that also have non-zero IP addresses(0.0.0.000).
***Keep note of the device name(first column) and Subnet(last column).
ex.
wlan0 UP 192.168.43.1/24
rmnet0 UP 22.111.46.111/24​
4.) Disable the built-in wifi tethering.
5.) Enable NAT routing of tethered device traffic so that data requests look as though they are coming from the phone instead of your tethered device.
a.) `iptables -tnat -A natctrl_nat_POSTROUTING -s 192.168.43.0/16 -o rmnet0 -j MASQUERADE`
***Note: You will need to change the strings in "Red" to match the subnet of your wifi IP address & device name of your cellular device.
Ex:
If your wifi device(mine is wlan0) IP is 192.168.20.1 you will use subnet 192.168.20.0/16​
Update: 2/15/2014
6.) Change the user agent on your browser:
User agent strings:
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.34 Safari/534.24
Mozilla/5.0 (X11; Linux x86_64; rv:27.0) Gecko/20100101 Firefox/27.0
Mozilla/5.0 (X11; Linux x86_64; rv:28.0) Gecko/20100101 Firefox/28.0
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_1) AppleWebKit/537.73.11 (KHTML, like Gecko) Version/7.0.1 Safari/537.73.11
a.) Chrome:
Select menu
Select tools
Select extensions
Select "Get more extensions"
Search for "user agent switcher"
Pick the one you want and set the user agent.​
b.) Firefox:
Select "Tools"
Select "Add-ons"
Select "Get Add-ons"
Search "user agent switcher"
Pick the one you want and set the user agent.​
c.) IE:
http://www.iegallery.com/
Search for "user agent switcher"
Pick the one you want and set the user agent.​
7.) Enable the built-in wifi tethering and see if everything works. ​
Enable Wifi NAT at boot:
1.) Install script:
a.) If you are on a JB based ROM that can utilize init scripts in /etc/init.d/ you can place the attached script in this directory(Remove ".txt" from the file name).
b.) Set the permissions on the file to 755(rwx-rx-rx).
Or​
a.) If you are on a version of JB that does not unilize init scripts you can use a script manager app to run the script when the phone boots(SManager from the play store is an option).​
2.) Reboot the device and try tethering to be sure everything is working. ​
Click to expand...
Click to collapse
It looks like T-Mobile is blocking this now. This tutorial currently does not work.
Update: Working again. I have updated the original post with more information.

[Q] TAP/Bridge mode VPN in jellybean

Has anyone successfully established a bridge mode VPN connection (using TAP) in any version of Jellybean, stock or custom?
It seems that every vpn app in the play store suggests that this can't be done in JB. I'd really like to upgrade to JB, but I really don't feel like reconfiguring my whole VPN setup, just to log on to my home server every once in awhile.
Hoping I'm wrong about this...
ushlambad said:
Has anyone successfully established a bridge mode VPN connection (using TAP) in any version of Jellybean, stock or custom?
It seems that every vpn app in the play store suggests that this can't be done in JB. I'd really like to upgrade to JB, but I really don't feel like reconfiguring my whole VPN setup, just to log on to my home server every once in awhile.
Hoping I'm wrong about this...
Click to expand...
Click to collapse
Yes all you need to do is search Open VPN Tun [short for tunnel and the name OpenVPN gives the setting] in the Android Play Store to find the Open VPN Settings app created by: Friedrich Schäuffelhut
[Found Here: Open VPN Settings]
When you run it it will run some checks and may ask you to download the following to install the ifconfig binary and the Open VPN binaries in to the system [ifconfig is installed as part of busybox so you maybe good may not but app checks and runs well].
Installer Link [which can also be run on it's own and also checks things and will tell you if you are good to go or if it needs to install things for you.
Open VPN Settings Installer
IF UNSURE USE /system/xbin for install location [first question] and accept defaults or the rest.
THIS WILL REQUIRE A ROOTED ANDROID DEVICE [due to it being a tunnel and not a tap interface you need root to set the connection up and make it usable within android the android VPN client itself only accepts TAP style interfaces due to possible security risks "casual" or "non-technical" users may not understand and thus to protect you from yourself it doesn't do TUN interfaces.
You can use either blah.ovpn OR blah.cfg [Windows servers use .ovpn as extension whereas Linux favors .cfg but both are the same text based profile file]. if I remember right just create /sdcard/openvpn/<whatever> [whatever is whatever directory name [if you want one] I use the client name that way all the keys and profiles are organized and not all jumbled in one folder [or if files have same name or different content then you will be forced to do this for something like multiple OpenVPN server profiles]. THE OpenVPN app tells you this if you open it and there is no /sdcard/openvpn folder found it says to create it in the middle of the main window area]
Also, it is easiest to edit your profiles so there is no absolute directory structure pointing to the files [the ca.crt, client.crt and client.key files].
This is very easy just remove all directories so the line ONLY has the filenames [See example profile in code box below].
Here to make this easy here is an example profile file I use [your server and port as well as if you choose to have it persist the IP addresses of clients across multiple connections may be different, up to you].
Code:
.
# Specify that this is a client
client
# Bridge device setting
dev tun
# Host name and port for the server (default port is 1194)
# note: replace with the correct values your server set up
remote some.domain.or.IP.address.here <whatever port you use here>
# Client does not need to bind to a specific local port
nobind
# Keep trying to resolve the host name of OpenVPN server.
## The windows GUI seems to dislike the following rule.
## You may need to comment it out.
## This MAY NOT be a good choice
## for most folks I use a private server
## without many clients so it doesn't
## affect me if they connect a bunch of times but any security systems
## may not like it if you connect too many times to quickly and you don't
## want your own server blocking your IP when you want to connect now do you :)
resolv-retry infinite
# Preserve state across restarts
persist-key
persist-tun
# SSL/TLS parameters - files created previously
ca ca.crt
cert client.crt
key client.key
# Specify same cipher as server
cipher <choose your cipher>
# [same as you set on your server don't make it different]
## Default here is usually BF-CBC if I remember right
# Use compression
## again make sure you enabled compression in the server profile or comment it out here
comp-lzo
# Log verbosity (to help if there are problems)
## I set it a little higher but not totally verbose
## I like a little info when there are problems
## to help fix them, up to you what you choose
## Can be different from server setting
verb 3
Hopefully this helps. I am unsure of your or anyone else who may like this posts technical skills so trying to be thorough. You could also use this profile to work backward filling in the same settings asked for in the server profile.
ONCE YOU GET THE profile on to the SDCARD and connect the first time the app will always bring it up and all you have to do is tap a checkbox to turn on the VPN Settings app and then once more to enable the profile you want [yes even if just one you have to check it, BUT, IF YOU uncheck the OpenVPN enable/disable checkbox at top the next time you enable it it will auto enable last used connection !
IT REALLY IS A VERY EASY TO USE AN NICE APP [AND ONLY ONE TO SUPPORT OPEN VPN TUN [TUNNEL] INTERFACE SETUPS!

Categories

Resources