• shortwavesurfer@lemmy.zip
    link
    fedilink
    English
    arrow-up
    70
    arrow-down
    3
    ·
    5 months ago

    Make sure your router has built-in VPN support folks. That way when some shit like this does eventually pass all your traffic can flow over the VPN for your entire network.

    • floofloof@lemmy.caOP
      link
      fedilink
      English
      arrow-up
      56
      ·
      edit-2
      5 months ago

      This law seems to be aimed at taking down hosted content though, so you can connect over your VPN but the sites won’t be there to connect to, unless they move their hosting out of the USA. And even that might not be enough to protect US companies from being forced to take the content down if they want to survive.

    • dynamic_generals@lemmy.world
      link
      fedilink
      English
      arrow-up
      11
      ·
      edit-2
      5 months ago

      I’ve had this setup and would recommend but since I’ve switched from OpenVPN to Wiregaurd I’m getting constantly hit by cloud flare verification s and captchas… and my IP hasn’t changed once since. Wondering if that’s just the environment now or specific to my protocol change. Any readers’ experiences?

      • Brkdncr@lemmy.world
        link
        fedilink
        English
        arrow-up
        13
        ·
        5 months ago

        Cloudfare sees a lot of traffic from a single ip and performs the checks you’re seeing to make sure it’s not malicious. Google will do the same, as will a number of other services.

        It’s the nature of a shared vpn service.

        • Petter1@lemm.ee
          link
          fedilink
          English
          arrow-up
          10
          ·
          5 months ago

          That is the goal, I guess, big tech companies don’t like if one protects their privacy…

          • FierySpectre@lemmy.world
            link
            fedilink
            English
            arrow-up
            6
            ·
            5 months ago

            Best of all captchas which require human interaction are completely redundant anyways. From a security perspective anyways (blocking bots generating huge amounts of traffic)… For training your next LLM however…

    • Petter1@lemm.ee
      link
      fedilink
      English
      arrow-up
      8
      arrow-down
      1
      ·
      5 months ago

      Make sure to own your router, I’d say. Set you ISP router to modem mode and use OpnSense on a APU as router where you have full control. You can filter ads with adGuard and you can use wireGuard and openVPN to connect to a VPN provider as well as setting up an endpoint so you can protect yourself even on the go and even on locked up systems like iOS.

      Except, Apple does let some of their own packages not go through VPN, which is very shady, tho.

    • PriorityMotif@lemmy.world
      link
      fedilink
      English
      arrow-up
      6
      ·
      5 months ago

      If you’re savy then install open wrt on it. If you want expert mode, then install pfsense on an old PC/laptop. If you want pucker factor, then install pfsense in a VM where the host machine gets it’s ip from the VM.

      • Passerby6497@lemmy.world
        link
        fedilink
        English
        arrow-up
        6
        ·
        5 months ago

        install pfsense in a VM where the host machine gets it’s ip from the VM.

        Why are you like this, and who hurt you??

        • PriorityMotif@lemmy.world
          link
          fedilink
          English
          arrow-up
          2
          ·
          5 months ago

          It’s actually not bad to do it as long as your host machine has a static ip. Makes it easier to take a snapshot before you make major changes. Just be prepared with an extra router. If you have a family the second the Internet is not working you will be blamed.

          • Passerby6497@lemmy.world
            link
            fedilink
            English
            arrow-up
            1
            ·
            5 months ago

            It’s actually not bad to do it as long as your host machine has a static ip

            Yeah, that’s reasonable

            install pfsense in a VM where the host machine gets it’s ip from the VM

            This not so much

            If you have a family the second the Internet is not working you will be blamed.

            Lol, I get blamed enough for DNS, I don’t need routing too

          • ArcaneSlime@lemmy.dbzer0.com
            link
            fedilink
            English
            arrow-up
            1
            ·
            5 months ago

            Thanks! Just to be sure, the router company becomes inconsequential when I install openwrt, or am I mistaken?

            As in say I buy a linksys router and install openwrt, linksys can no longer spy on my traffic, so I shouldn’t worry about that, right?

            • PriorityMotif@lemmy.world
              link
              fedilink
              English
              arrow-up
              2
              ·
              5 months ago

              Yeah. There’s a possibility that there is a backdoor built into the soc, but that would be nation state level stuff that would be extremely difficult to uncover.

              • ArcaneSlime@lemmy.dbzer0.com
                link
                fedilink
                English
                arrow-up
                1
                ·
                5 months ago

                Ok cool thanks, I’ll probably go with something on this list then. My other things I was looking at were the Turris Omnia and the Peplink B-one, but tbh a lynksys with openwrt will likely serve me fine.