Skip to content

VPNBOOK – OpenVPN – How to set up OpenVPN on Windows 7


Imagine that you’re travelling overseas, or the government are playing with the DNS to stop access to your favourite websites, what could you do?  Well the solution is to use OpenVPN to bypass all government restrictions.  VPNBook offer connections using Port 80 to sidestep firewalls or state regulation.

When you’re in the Middle East, or a country that disapproves of  social media (eg China disapproves of Facebook and Google), use OpenVPN, which takes all of 2 or 3 minutes to install.  Coupled with VPNBook’s VPN certificate for Port 80, you can bypass firewalls, as most firewalls allow web traffic.

Why is OpenVPN  Recommended compared to VPN’s in Windows 7?

  • * Faster VPN
  • * More Secure VPN – AES 256 Encryption
  • * Stops DNS Leaks from Windows operating System
  • * Bypasses all Firewall restrictions
  • * Bypasses government restrictions
  • * It’s bulletproof. 
  • *No government restrictions can suspend Port 53

To Install OpenVPN – takes 2 or 3 minutes to install

1) Download the OpenVPN software from You need the “Windows Installer”.

2) Once the file is downloaded, right click the file to start the install process, then “Run as administrator“.  Note for Vista and Win 7 users, you need to install OpenVPN as administrator.

3) Click “Next” and then agree to the Terms of Service.

4 ) You’ll see “License Agreement”

I Agree

5) Have all components selected (make sure all have checkmarks) and the click “Next“.

6) Choose install path – this will be c:\ProgramFiles\OpenVPN

Now click “Install“.

In the security window that pops up select “Install“.

8) Installation Complete Screen.

Click “Next“.

9) Click “Finish“.


Extra information on using Winzip to download the certificate are here, if you haven’t used Winzip before.


Now we install the Certificate to connect to VPNBook on Port 80 (Needs Winzip)

STEP 1 –  download the Certificate for TCP Port 80 access.

vpnbook openvpn pass 20th may


Download OpenVPN certificate bundle and unzip it

3) Unzip the certificate file.

STEP 3 – Copy the .ovpn files to c:\ProgramFiles\OpenVPN\config

Extract the files to c:\ProgramFiles\OpenVPN\config or copy them to this directory.

**EDIT MAY 2013 – VPNBook bundles now include only include the  .ovpn files.  I’ll explain this a little later on.

4) If you don’t know how to use Winzip, don’t worry, we can use cut and paste instead.  We can use Windows Explorer – Copy the .ovpn files, Navigate to “c:\program files\OpenVPN\config” and paste the .ovpn configuration files into this \config directory.

Note for ordinary OpenVPN there would be 2 files (a .crt and .ovpn).   (vpnbook.crt  was the old security certificate).  This is important if you’re an experienced VPNBook user – as you’d be flummoxed wondering where this .crt file has gone.  It’s been integrated into their .ovpn file.

Step 5 – Connect to OpenVPN.

5) Right click on the OpenVPN icon in the system tray (lower right hand corner of your screen), and select “Connect” from the menu.

6) Enter your VPNBook user name and password into OpenVPN (these are obtained from

  • Username: vpnbook

  • Password: rac3vat9

  • Click “OK

7) Connected log appears – Congratulations… you are now running a VPN using Port 80.

As OpenVPN is connecting the log will fill with information. This is normal. Once completed you will be connected to your new VPN!

Congratulations! Your connection is now ready to use!

Select “Disconnect” when you are ready to end your session – but lets test that you are running a Romanian IP first.


To Test that you’re running on a Romanian IP – and get a pretty Romanian Flag

Click on this link:

That was easy, right?


Where to find the OpenVPN icons…to launch it next time.

  • Right click the desktop icon and select “Run as Administrator”.
  • System tray (on the bottom, by the clock). Right click the icon, vpnbook-udp53, connect.
  • Start > All Programs > OpenVPN > OpenVPN icon (2 terminals and a planet Earth icon)
  • Notice the colour of the terminals.  Red terminals = not logged on.  Yellow terminals = awaiting passwords.  Green terminals = connected and working okay.

Why is OpenVPN Recommended compared to VPN’s in Windows 7?

  • * Faster VPN
  • * More Secure VPN
  • * Stops DNS Leaks from Windows operating System
  • * Bypasses all Firewall restrictions
  • * Bypasses government restrictions
  • * It’s bulletproof. 

Excellent tutorials for setting up OpenVPN on Mac, Vista and Linux are here:

My thanks to   Good luck with the community project, and I hope you get lots of donations to buy new servers.    Thanks for offering such a great service, which is free, and allows everyone to learn how to use a VPN:)

vpnbook openvpn  config

Things you might want to do next:

How to Automate your login to VPNBOOK with OpenVPN

Which is the Safest VPN on the Market?  Which VPN do I use?

How to run OpenVPN with administrator rights

IVPN – The VPN which server logs every 10 minutes (a thousand times every week)

VPN – TorrentFreak Criticisms of HideMyAss VPN

About these ads
  1. DvS permalink

    The first option returned an error when I put this line in the config file: ip-win32 netsh

    So I tried the second and .. it worked!!!

    Thank you very very much uwnthesis you really do an outstanding work in this blog.


    • YAY!!!


      Happy dance. WOOHOO!!

      • zipnak permalink

        hi when I try to connect using the vpnbook for my openvpn on windows 8.1 it gives me this error message ” Unrecognized option or missing parameter(s) in vpnbook-euro2-udp53.ovpn:17: (2.0.9)” what should I do?

      • Hi Zipnak,

        Normally this error appears when you’ve got an older version of OpenVPN on your laptop.
        The solution is to remove all instances of OpenVPN, then make a fresh install using VpnBook certificates. The error should then disappear for you.

  2. JL Cheah permalink

    Thanks for the info and the setup guide.
    May I know that is there a way to “pre-enter” the username and password instead of enter the username and password manually every time after clicking connect?
    Thank you.

  3. scott permalink

    Hi Uwnthesis, your tutorial seems the most self explained i have ever seen.. Please is it posible to use a u.s.a ip on openVPN instead Romania ip? Im just confused. If yes please elaborate on the processes involve… Thanks.

    • Hi Scott,
      The Romanian exit node has been selected for legal reasons. Romanian courts recently struck down the EU’s Data Retention laws – as a breach of privacy.
      In the US, data logging isn’t mandatory, BUT if they do have server logs, those logs can be seized under both FISA (Foreign Intelligence Surveiliance Act) and the Patriot Act.
      Therefore European Data protection laws give you greater rights.

      VPNBook have no exit nodes in the US – as any company which operates a satellite office in the US, comes under FISA/Patriot Act. Therefore many EU companies would avoid an US based enterprise.

      If you can afford it – $100 a year, then have a look at signing up with They delete their server logs every 10 minutes.
      They have multi hop options – and many are across the US. So to give an example of how this works; a prosecutor would have to get a court order and serve it against IVPN in Malta, in order to seize the server logs in Texas, all within 10 minutes.

      IVPN offer:
      CA – TCP
      CA – UDP
      TX – TCP
      TX – UDP

      Hope that helps you :)

  4. Dan permalink

    Hate to bother you again but vpnbook and openvpn just don’t seem to work for me. I tried port 53 and another but both times they failed to change my ip. After few tries, the service fails altogether. Without openvpn it seems to work fine. Wonder why that happens…..

    • Hi Dan,
      Glad to help out.
      What errors are you getting? That helps me sort out the problem for you.
      Go to OpenVPN icons (Amber or green), right click > view log
      Can you see any errors.. like TLS timeout for instance?

      • Dan permalink

        Well, it warns that “no server certificate verification method has been enabled, openvpn 2.1 requires script security 2 or higher to call user-defined scripts and executables” and then fails. Initially, though, it seemed to work (light turned green) and assigned ip, but when checked correct ip was identified, so does it hide anything? Btw, do you know anything about supposed vpn service named Images! (the punctuation isn’t mine)? Regardless, thank you for the interesting subjects and detailed overview. Keep up the good work! (this time “!” is intended)

      • The server cert error we can ignore, as I even get that with paid VPN’s. The light turning green is a great start – it means that you’ve been authenticated by VPNBook, so we have connectivity and the right password.

        There is something called a DNS leak. If you got to – it will show you the IP you’re on probably Romanian.

        Windows is leaky. She likes to be lazy and use the nearest DNS she can remember… you’d need to flush the dns for that.
        You are on a Romanian IP, and your logs are being deleted.. so it’s all good news.
        But it’s lazy windows programming which causes the DNSleak, and it happens with most VPN’s, and it’s much worse on the PPTP rather than OpenVPN.
        Is this what’s happening for you? If it is, then you have connected fine, and your IP has been cloaked.

        Glad you like the blog- the comments cheer me up no end. That’s my main aim – to get everyone onto VPN’s and to stop data collection/Retention. Schneier calls data collection the most dangerous cyber threat – it’s far more dangerous than Cyberwar or crime. So if we can thwart the data collectors, then I’ve succeeded. :)

        I’ve not heard of Images. My advice would be the same for all VPN’s.
        1. Ask do they keep logs (connection, server, traffic logs).
        2. How long do they keep them. Telco’s like Swiss VPN keep them for 6 months. Logemin resell them. WHAT!! Hidemyass will give the logs to the police. Deal with VPN’s that focus on privacy and server log deletion.
        3. Make sure they delete server logs – every day or sooner. VPNbook delete them after 3 days.. I’m be happier with 24 hours maxium.

        No problem for the help. Any time.:)

  5. Ford Prefect permalink


    I’ve connected and DNSleaktest recognizes me as coming from the Romanian server, but it still has my US ISP DNSs listed. In case I’m not concerned at some point in the future or I need a faster connection, is it wise to leave these installed? I’m not a network expert and would like to know how to have the US fallback in case I have trouble with this service.

    Thanks. :-)

    • Hi ford prefect

      You’ve done everything perfectly.
      The dnsleak is the fault of Windows… it’s a lazy operating system. Only your ISP is being revealed, and you can flush the cache to stop this. will show you how to do this.
      basically it’s type into a command prompt ipconfig /dnsflush

      For your choice of future VPN, always use a VPN operator outside of your own country (so that US court orders do not apply to them).
      You can use companies such as – who offer UK, US, Netherlands and multihop techology. This means you can use a single hop, which is faster, or route via 3 countries.
      That means that no single court order can be obtained within 10 minutes – in 3 separate jurisdictions.
      And if one was obtained, at most they’ll get say 3 or 4 minutes worth of evidence…. but it’s virtually impossible to get even to the court order stage before all logs are wiped.

      Most paid for VPN providers provide a very easy to install version of OpenVPN, that’s preconfigured.
      The installs will be easier, as they’ll be set for that VPN.

      You’ll also get a special key – that’s secret between you and the vpn server.
      You don’t have that currently, as Openvpn don’t offer it. But it gives AES256 encryption of your connection.. that only the server and your certificate understand. This special and secret key, gives ultimate security. It’s injected into the SSL handshake… so that the secret key identifies you to the server. This secret key can be used on routers, so that you’ll see “tomato” routers using this master key.

      Always check how fast your VPN provider will delete the server logs. Look for at least every day for your own security.

      Thanks for leaving a comment. It always makes me smile, to see technology working as it should. :)

      • Tim permalink

        I owe my exploration into VPNs to this post and I thank you! I first used VPNBook and recently ordered a month of service from PIA is located in the US but they do not keep any logs (because the US laws don’t require it) and have come very highly recommended. I usually use their servers in Canada (they offer them in Romania, Netherlands, Sweden, US, and others) and usually get around 10mbps and max of around 22 mbps sometimes (my connection is 25). The best part is that a year of service is only $40. After a couple weeks it looks like I’ll renew for a year at the end of the month and pay in bitcoins.

        So thank you guys for upkeeping this post and being so helpful for us noobs! I also have a question I’m sure you can answer. Since my ip is hidden behind PIA, would it be okay to torrent on the US servers they have (I live in the US and get better speeds on them)? They also have a free SOCKS5 proxy for torrents, what are your thoughts on this kind of service?

      • Hi Tim,

        The answer to that depends on how your VPN provider feels about it.
        Some VPN providers, like BTGuard, are pro torrenting and assume that you will be file sharing.

        Others allow p2p protocols on their servers based in say France, or the UK, but not their US servers.
        This protects you. The heavy fines for file sharing are from the US.
        However, I’ve seen estimates that 35% of the entire Internet is file sharing traffic. That’s the lowest estimate.
        The general estimate is that 65% of the Internet is file sharing traffic, and the highest estimate was 80%.
        So I’d say that US corporations have lost this battle, but don’t want to admit this to themselves.

        Therefore, see what the VPN operator says about file sharing, and take it from there. If they’re willing to ignore it, then you’re fine. Just make sure they delete their logs every 24 hours or more often… or keep no logs. You might see this called “connection log”, traffic log, or server log. Make sure none are kept, or are deleted within 24 hours… to keep you safe.

        Thanks for leaving a comment – it’s wonderful to hear that you’re using a VPN due to my little blog. My entire aim, was to get you on a VPN.

        You’d made me one happy bunny :)

  6. neoitphyte permalink

    This is probably the most awesome tutorial/article/site/whatever that I’ve seen in a long time. A friend pointed me to it when I was trying to find out some info on using a VPN on my PC. And your directions were great. I got it set up on there and it seems to be working as it should. This was a week or so ago so I apologize if my info seems outdated. But I even set up that text file so I didn’t have to enter the username and password everytime. I felt smart. Haha. So thanks very much.

    I was wondering if I may be able to ask a question. Or more likely, whether you’ll answer it. Since doing this on my PC, I’ve looked into using a VPN on my mobile phone. Or at least I’ve tried looking into it. Its a Galaxy S3. I’ve tried every search I could possibly think of and have found some info but almost all of it involves using a VPN service (would that be the right term?) that costs monthly fees AND is located in the US. Which, at least to me, seems to kind of defeat the purpose. I can understand the fee thing. However your method seems much better.

    Anyways, I guess my question would be is this something that can (or even should) be done on a mobile device such as a phone or tablet? I’m afraid I may only be grasping at the hint of what using a VPN entails and not fully “getting it.”

    Thanks again for the above instructions!

    • Hi Neo,

      Thank you for such a nice comment. It’s really wonderful that you’re all so nice to me – it’s a great feeling, so a giant thank you.

      Your Galaxy would use the Android Operating System. Therefore you have two options, both PPTP and OpenVPN.
      Mobiles generally work on the less safe PPTP protocol – but Android can function with OpenVPN.

      VPNBook – Free Mobile
      PPTP (point to point tunneling) is most used since it is supported across all Microsoft Windows, Linux, Apple, Mobile and PS3. It is however easier to block and might not work if your ISP or government blocks the protocol, in this case you need to use OpenVPN which is impossible to detect or block

      Server #1 (Romania)
      Username: pptp
      Password: Zj8Dc6FV

      Server #2 (Romania)
      Username: pptp
      Password: Zj8Dc6FV

      You can get OpenVPN on the Android.

      Private Internet Access Tutorial for Android using OpenVPN

      Hope that it works fine for you. VPN’s are the way to go!

      Take care.:)

      • neoitphyte permalink

        Thank you very much. Unfortunately though I can’t seem to get it to work. I followed the directions at that second link. However instead of using the server address it lists I put in the one you listed. As far as I can tell I can only put in one at any time. So I just tried the first one first and when it didn’t work, I put in the second one. Hopefully I explained that well. Aside from the server address and the username & password, I left all the settings the same as in that second link. I assume that’s what I was supposed to do.

        So once I finished all that (I think), I went ahead and tried to connect. And that’s where it seems to not be working. I get the following line:
        P:read UDP [ECONNREFUSED]: Connection refused (code=111)

        It tries 5 times according to the settings but still doesn’t connect.

        I’m sure I’m doing something wrong. It probably sounds like I might have some idea of what I’m doing but I really don’t. I kind of get the feeling I almost need “VPN for Dummies.” Haha.

        One thing that I’m not really sure about or even understand at all is that that second link uses server port 1194, UDP, and LZO Compression. I really don’t know what all that means, especially that last one. The LZO thing. I *think* I at least know what the port means. I’ve done port forwarding for my PS3 but I just followed directions from another site about that kind of stuff. Even then though, I never totally grasped what UDP even means. I mean I know what the letters stand for but that’s all. The same goes for TCP. I think the directions you gave for doing all this on a PC centered around doing this with port 53. But that really is about all I could say I “understood.”

        I hate to say anything because I hate to be “that guy” by bothering you or whatever by asking about this. I did at least want to say thanks though. I really appreciate it.

      • Hi Neo,

        1. UDP – is like your paperboy. He’ll throw the newspaper through the letter box, and that’s it. If he delivers your newspaper to the wrong house, cos he was late, well tough, he doesn’t care. UDP – is connectionless, unreliable, doesn’t track, number or count the deliveries (a bit like our wonderful post office or mail then). :)
        2. TCP – is recorded delivery like UPS,DHL etc. It has a sequence or tracking number. It counts parcels in and out, and ensures that it gets a signature for each delivery. It’s very secure, safe, guaranteed delivery, and it will keep trying to deliver the parcel.

        UDP is great for video or skype.. It’s faster, so better for video. It’s more worried about being late for school, than your delivery.
        TCP is better for email. But, so slow. it has to reorder its packets into the right order. Doesn’t care about being late for school.. as long as your paper is delivered to you.

        The nature of the two protocols is VERY different.


        Okay, I think I may have caused the confusion. You followed the diagrams from the second link, but you need the super dooper secret keys and codes etc from VPNbook.

        Follow the pretty pictures from the second link… but don’t use PIA certificates. VPNbook passwords and certificates are totally different. Error 111 is likely to be your client settings. You’ve downloaded the PIA client by accident at a guess. So when you try and connect to VPNbook, their servers are thinking “WHAT??” where’s this Florida server – we’re in Romania… :)

        You need to get them from VPNBook directly.
        Free OpenVPN Account (Requires Download of the free opensource OpenVPN Client, OpenVPN offers the best anonymity and is impossible to block by your government, school or Internet Service Provider.) – You should try all the profiles and see which provides the fastest and most stable speeds.

        Username: freeopenvpn
        Password: J8hfCiu6W
        Download OpenVPN Certificate: (UDP Port 25000)
        Download OpenVPN Certificate: (TCP Port 80)
        Download OpenVPN Certificate: (UDP Port 53)
        Download OpenVPN Certificate: (TCP Port 443)

        You can’t use the certicates from PIA for VPNBook servers. Hope that helps.

        Keep the questions coming. It’s good for me – makes me really memorise the protocols that I’ve studied.

  7. neoitphyte permalink

    Okay, so first, I’ve been to a year of college and a technical school, both for different reasons, but have always had some kind of computer course and that was the best analogy/metaphor/whatever I’ve ever heard to explain TCP and UDP. If its okay with you I’m totally going to “steal” that the next time someone asks me. :) If by chance you have another one for VPN I’d love to hear it. Haha. I tried explaining it to a friend when he asked and my explanation wasn’t very…user friendly. Also I was unable to reply to your last post so I’m sorry about that.

    I’m not sure what I’m doing wrong but I just cannot get this to work. I’ll try to explain in detail what exactly I’m doing just in case it matters. I tend to be long winded anyways so I apologize for the verboseness.

    First, I went to, the OpenVPN tab, and downloaded those certificates. At first it just wouldn’t work at all. Then today I noticed that the username and password were both different now for some reason on vpnbook’s site. So I switched to those. Then it acted like it was going to work but it didn’t. It’s kinda like it won’t stick.

    So here are the details. Following the pretty pictures on that second link you gave me, I just kept everything the same except that I would change the port to which ever one I was trying at the time. For Server Address, I used “”. I started with trying the 2 UDP ports, using 25000 first. I left the LZO thing checked. So the next thing is the “Type.” I’m wondering if I’m doing this right or not but I just left it as Username/Password. There are quite a few choices though. Anyways, next it wants the “CA Certificate”. I wasn’t sure if I was supposed to choose the .crt file or the .ovpn file. So I tried the .ovpn file first. That wouldn’t work so I tried the .crt file. That seems to be the right one but it won’t work. It says its Authenticating and then even Connected. But then, looking at the log file, it then says “P:Authenticate/Decrypt packet error: cipher final failed”. It says that 5 times and then says “P:[] Inactivity timeout (–ping-restart), restarting” followed immediately by this line “P:Sorry, deleting routes on Android is not possible. The VpnService API allows routes to be set on connect only.”

    I just tried it again using that second server,, because I wanted to take screenshots of the log in case that would be “easier” to read than what I typed. However this time it behaved a little differently. It still said the bit about the “cipher final failed” but, instead of only trying it 5 times, it did it several times. Then, instead of immediately saying the thing about “deleting routes”, it said “P:OpenVPN ROUTE6: OpenVPN needs a gateway parameter for a –route-ipv6 option and no default was specified by either –route-ipv6-gateway or –ifconfig-ipv6 options”. Then it says “failed to parse/resolve route for host/network: ::/0″. Then it seems to go back to what I mentioned earlier like its trying to start over. It did the whole “cipher final failed” again only even more than before. Then it said the bit about “deleting routes on Android” again.

    Again I apologize for all the words and how I formatted it. I can still post my screenshots if that would make a difference. And I realize that this is basically out of the purview of your original article so I hope it doesn’t sound like I expect anyone to help me at this point. You’ve already helped me understand quite a bit so thanks.

    • Hi Neo,

      Glad my analogies help you. :) No problem with reusing my explanation.

      Lets try and set up a connection with PPTP first (there are problems reported – but we’ll test it out).
      Here is a short how-to which will guide you through the setup and use of personal PPTP VPN on your Android phone:

      How to Set Up personal PPTP VPN

      1. Go to “Settings” on your mobile phone, and select “Wireless Controls”
      2. Select “VPN settings”
      3. Select “Add VPN”
      4. Select “Add PPTP VPN”
      5. Set a “VPN name” as you like
      , and Set VPN server from this list: “My Servers” (ex: Check the “Enable encryption” if it’s unchecked. Save the setting.

      Current VPNBook passwords
      Free PPTP VPN Account (Easy to setup, no need to download any software, works with all Windows, Mobile and PS3 Devices)

      Server #1:
      Server #2:
      Username: vpnbook
      Password: wUvr8kjM

      Note: some Android versions does not support encryption, even if you select it. If you can’t connect using PPTP or you get connected for a short time and no traffic is going, try a L2TP connection as those seems to work better on Android. Here is the L2TP tutorial.

      Hope that helps.

      there is a problem with VPNbook – they’re at capacity at the moment, so they are under a high server load, which may cause some hiccups.

  8. bob permalink

    Why does it show google in the USA 3 times when I use dnsleaktest???? Are they feeding my data to google?!?!

    • hi bob,

      I’ll go check this out.
      We don’t want Google involved in any stage of a VPN – or your search queries… or ANYTHING.

      • bob permalink

        Is it possible that UDP 53 is blocked in my college? Would it matter if I used 2500 instead?

  9. wali permalink

    hey man i need the internet address ..

    • Hi Wali,

      That’s the job of the Domain name server.

      If you mean VPNbook – look up their site.
      Server #1:
      Server #2:
      Username: vpnbook
      Password: wUvr8kjM

  10. Kay permalink

    I’m stymied. The link, “” doesn’t work and I can’t find this openbook thingy anywhere else. The page that tells you how to download the certificate doesn’t say where you can download it from.

    • Hi,
      Just tested and it’s working okay at the moment
      on the front screen look for the openvpn TAB
      there are 4 certificates listed

      Username: vpnbook
      Password: wUvr8kjM
      Download OpenVPN Certificate: (UDP Port 25000)
      Download OpenVPN Certificate: (TCP Port 80)
      Download OpenVPN Certificate: (UDP Port 53)
      Download OpenVPN Certificate: (TCP Port 443)

      Hope that helps

      • Kay permalink

        Amazing–the link is working now. Thanks!

  11. needhelp permalink

    Is it possible that all ports are blocked in my college?

    • Hiya

      They might have blocked all ports to the internet, but if you have an internet connection, then probably not.
      You can try TCP port 80 = Web traffic
      Or UDP Port 53 = Domain Name Service.
      Those are most likely to be unblocked for you.

    • The VPNbook page is highlighting that euro1 server is down.
      This probably is why you can’t connect.
      Euro2 is online.

  12. needhelp permalink

    I noticed that euro1 is down and I tried all kind of connections with euro2 without success. Actually, the thing is a bit more complicated and there are several issues I really cannot understand, so since you are so kind and helpful I tell you all the story so that you can help me. What happens in my college is that as soon as any p2p activity is detected with any p2p client, the internet connection is totally blocked for some minutes. My first try was to download the VPN GUI client from (the new one that you get from the VPNbook homepage after having chosen “accounts free” and clicking on the link currently shown in the OpenVPN (recommended) tab). I installed it, downloaded the two bundles euro1 and euro2 tried all the profiles, but I never managed to connect. What is really strange is that I never got the login gui, but immediately received the message “disconnected from the vpnbook-euro2-udpport53″. I think it is a software and not a connection problem, because it behaved in the same was when I unplugged the Internet cable, however I cannot explain: I have windows 7 and a 64 bit machine, and at home a same OS (only windows 7 professional at home and enterprise at college) and the GUI connects and works perfectly. Then I uninstalled the OpenVPN GUI, downloaded the OpenVPN 2.3.1 from, windows installer 64-bit and tried to use it after having placed all the bundles in the correct directory , but the program did not work giving me an HKEY error every time I tried to start. I uninstalled it, downloaded the windows installer for OpenVPN 2.2.2 from the same site, and this worked.However, I tried to connect to server 2 (and also 1) both through UDP and TCP, but I got timeouts and retries after 2 seconds, and the “light” always kept yellow. Then I wrote that message to you. In the meanwhile: I signed up on for a free trial, downloaded and installed the software, and..surprise: I was able to connect to the any of the 3 servers available and to run my vuze without problems, and without getting kicked off the internet by my college systems. So evidently there must be some port getting out. So my questions are:
    1. How is is possible that privatetunnel works and OpenVPN 2.2.2 does not? Can you imagine some reason?
    2. Do you see the reason why the OpenVPN GUI software does not even tries to connect (and does not let me see the login GUI?)
    3. Do you see the reason why the OpenVPN 2.3.1 does not even start and gives me that error?
    4. what is your opinion about privatetunnel?
    Thank you very much for your work and patience: as you may understand I am not an expert at all and your blog was a great discovery for me. Thanks again.

    • Hi needhelp,
      Okay, I’ll try to answer your questions.

      1. You have to use the lastest VPN client – as VPNbook have adapted their client config to use this.
      You must use 2.3.1.
      OpenVPN 2.2.2 is the old version – the config files have been updated, so won’t work with this version. So that’s easily explained.
      The yellow light on OpenVPN means you’re not authenticated/connecting.

      2. UDP port 53 has been disconnected. So you wont be able to connect using that certificate.

      3. They now ask that you use say TCP port 80, if you need to hide the tunnel. Their new bundles are using new ports, but not port 53.

      4. Today it’s euro2 that’s offline. So don’t try euro2 at the moment.

      5. Private tunnel i have limited exposure to. I have tried to use a paid version of a VPN provider.. and when I had no login arrived.. their customer services just kept asking me if I’d paid… for 3 days.

      So sometimes technical support at paid sites is totally awful, even amongst the massive firms and VPN giants. Customer service needs to be right, first time – palming people off all the time is unacceptable – so I terminated my contract, (I hadn’t had a login so they couldn’t accuse me of using their bandwidth or services).

      6. I use IVPN.
      Their system worked first time. And the login arrived – always a nice touch, to get a login ID. Even though some VPN giants can’t master this step. (OUCH, I’m being mean there). So I’d happily recommend IVPN.

      If you find a service that works, then great. I’m happy that you’re on a VPN. :)

  13. hi thanks for your service can you start a free ervice like pdproxy or wi-free ??? the thing is i have udp port 53 open so i was wondering how to create a udp tunnel and pass tcp/http traffic though . can your service do that ?

    • Hi IC,

      I don’t run the VPN service, I’m sorry.
      I’m helping out with technical support for free.
      If I can bridge the gap and teach everyone how to use a VPN, then I’ve achieved my aim.

  14. Dutch permalink


    I have installed openvpn and with the dnsleak check found that I have 3 ip addresses. The first one in the Romanian one but the other two are British is that right?

    IP: 213.120.234.xx
    ISP: British Telecommunications
    Country: United Kingdom
    IP: 213.120.234.xx
    ISP: British Telecommunications
    Country: United Kingdom

    Thank you,

    • Hi Dutch,

      You need to flush your DNS cache.

      Windows is lazy, and goes back to your local ISP… as it’s in the cache.

      • ajc291 permalink

        I am having this issue too the dnsleaktest is showing the Romanian IP address but after checking for leaks its showing my own ISP. I have flushed the dns with cmd.exe in admin mode with “ipconfig /flushdns”, the command prompt shows that the dns was flushed but still getting my own isp.

        I also tried the dns leak fix the site had and its not working for me, after connecting to the vpn with the fix in place I have no network activity

      • Hi AJC,
        I had problems with the DNS leaktest too – it’s not picture prefect yet…
        You can cheat and set your DNS to an OpenDNS supplier – as that would side set anyone locating you via your ISP.

        To be very certain, you can use these IP’s numbers in your router… so that your router doesn’t look up your websites via your ISP – but via a 3rd party supplier.
        Find the fastest DNS server to you, and generally that’s a server located close to you.
        Just don’t use a Google server – as they record and aggregate data – which is the last thing you want to happen.

        Set your DNS to a public service – so that your ISP is not leaked. You could if you were in the UK, use a US service… (Just not an Australia DNS server.. as it has to travel around the planet for each query).
        The problem lies with the windows operating system… she’s lazy.
        After you’ve linked to VPNBook, VPNBook DNS servers would take over.

        VPNBook deletes their server logs every 3 days.
        If this VPN is critical for security, consider a VPN that actively deletes server logs more often.

  15. it connects but can not surf the net why?

    • Hi cornelius,

      Can you send me the error message
      right click on the OpenVPN icon, view log..
      and paste any errors back for me, and then I can tell you what’s happening :)

  16. it when downloading it disconnects and connect any help?

  17. Hawaiianer permalink

    i need help,
    when I click on the OpenVPN tab, i see the euro1 and euro2 bundle, so …
    i download the euro bundle1 but when i unzip the bundle i have only the port´s but NOT the certifikate, what is he problem? please help thx

    • Hi Hawaiianer,

      You’re right.
      Just downloaded both bundles to check…and guess what.
      Only the .ovpn’s are included.

      I’ve been through all 4 VPN’s – and there’s no .crt included in any of the bundles.
      You might have to stay with the PPTP setup.

      Do you want to email them and let them know – or shall I?

    • Hiya Hawaiianer,

      Just opened up the .ovpn files…
      VPNBOOK have included the cert’s inside their .ovpn files.

      Do you want to install the .ovpn, and see if connects without the .crt. They’ve placed them inside the .ovpn files…

  18. ajc291 permalink

    Hi, i tried changing the DNS.
    The dns leak went away but now certain traffic like games or streaming dont seem to be working. automatic dns works with vpn connected works but i have dns leaks

    I didnt have any trouble with my VPNBook/OpenVPN configuration until recently
    I am thinking this might be a ISP issue or something changed in VPNBook configurations, since i noticed they updated their servers

  19. Bigesta permalink

    I have been using the vpnbook-UK1-udp53 up until may 20 when they changed the password to “rac3vat9″, the problem is ever ince then i can no longer connect with the Uk1 udp53 anymore. the only one that works is the US1-udp53. When i use the Us udp53 i am only allowed access to a few sites like,, but any other sites don’t work. what could be the problem. Please help

    • Hi Bigesta,

      Just downloaded the client config for uk1 udp 53…
      dev tun0
      proto udp
      remote 53
      remote 53
      resolv-retry infinite

      **Do you have connectivity to
      Can you try and ping that IP address for me?
      Let me know what happens.

      **How to ping
      Start > all programs > accessories > command prompt (black tv screen jobby)
      you enter:
      then press the enter key

      Does it connect?
      does it lose packets? or does 100% make it
      what is your average response time in ms (say around 40 ms).

      Good luck. :)

    • Hi Bigesta,
      Just downloaded euro1 udp 53
      dev tun0
      proto udp
      remote 53
      remote 53

      Can you ping ip – see if that’s faster than the UK IP.
      The UK server has restrictions on it. You may prefer to go back to euro servers to remove these restrictions :)

      • Bigesta permalink

        I tried to ping (euro1) – timed out euro2 – timed out uk1 – timed out us1 – received = 4 (100%), average = 376 ms,

        i am getting a lot of this messages

        Tue May 28 03:32:46 2013 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #8165 ] — see the man page entry for –no-replay and –replay-window for more info or silence this warning with –mute-replay-warnings
        Tue May 28 03:34:53 2013 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #8261 ] — see the man page entry for –no-replay and –replay-window for more info or silence this warning with –mute-replay-warnings
        Tue May 28 03:35:09 2013 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #8272 ] — see the man page entry for –no-replay and –replay-window for more info or silence this warning with –mute-replay-warnings
        Tue May 28 03:35:09 2013 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #8273 ] — see the man page entry for –no-replay and –replay-window for more info or silence this warning with –mute-replay-warnings
        Tue May 28 03:35:09 2013 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #8274 ] — see the man page entry for –no-replay and –replay-window for more info or silence this warning with –mute-replay-warnings

  20. i keep getting error…

    Options error: Unrecognized option or missing parameter(s) in vpnbook-euro1-tcp443.ovpn:18: (2.0.9)
    Use –help for more information.

    • Hi Cleopas.

      VPN changed their passwords about 1-2 days ago…
      This is their new password.
      Username: vpnbook
      Password: phefra7U

      If you try using this new password.
      Reset up the PPTP setup… and then post me up any errors you get, and we’ll take it from there.
      Good luck!

  21. Can i connect VPNBOOK open vpn on my laptop without any internet pack…??

    • By “without any internet pack” doesn’t mean anything to me.

      Do you mean
      1. Without the OpenVPN Client? No. You MUST download and install the openVPN client software (ie no choice about this).
      The software is cross platform and will work on Windows, Linux and Mac.

      Once installed, you download the certificates from your VPN provider to connect to their server.

      The VPN provider issues a secret key. In the case of VPNBook, that password is changed once a month, but it’s public, so not actually secure. In the case of IVPN is totally secret and never revealed to anyone.

  22. Steven permalink

    Wow, you obviously don’t know anything about laws in other countries. If logs are deleted in 10 minutes no court would ask for them anyway. Not to mention since you posted this article a lot changed. All governments and companies actually push today for internet control. In Japan they already passed a law that prohibits any downloading even for private use. And Europe has passing way worse laws than anyone anywhere in the world. And europeans don’t even know about them. They much worse than SOPA and PIPA and they are ALREADY IN EFFECT. America was always for freedom and privacy. Europe on the other hand was always the opposite. Only lately all this happened. But it will go back to what it was before. It’s already going that way. Europe is becoming already more oppressive of its citizens and if you don’t see it then you are stupid. Not to mention that in US only downloading of pirated things is illegal just like pretty much everywhere else. Learn the laws of your own countries. And most governments start enforcing those laws.

    And by the way VPNBOOK has servers in US, UK, and Romania. Stop your stupid propaganda about how good Europe is because I’m from Europe and it is definitely the exact opposite. It’s pure rubbish.

    • Hi Steven,

      Guess you haven’t studied who in Europe has enacted the Data Retention, and who refused?

      Romanian courts struck down the Data Retention laws.. as a breach of privacy.. so Data Retention is illegal – that’s why Romania can be a good “exit node”.

      Next we have IVPN – they delete logs every 10 mins… they’re in Malta.

      The Data Retention laws were only enacted in a handful of countries..
      This only applies to a Telco. So if you use a privacy service like IVPN, the data is encrypted… and not even your ISP can read the traffic.

      They can have servers anywhere… as they remove the logs in 10 mins. They’re not a Telco, so data retention laws do not apply to them.

      Hope that explains the difference. If your ISP ran your VPN, you’d be in big trouble, but the first rule of selecting a VPN provider is “NEVER SELECT A VPN IN YOUR OWN COUNTRY SO THAT COURT ORDERS DO NOT APPLY”

      Hope that helps.

  23. yaha permalink

    what password to connect..?

  24. VPN_User permalink

    Cant connect to VPN service. Below is the ping script….

    Fri Nov 08 01:06:02 2013 Restart pause, 2 second(s)
    Fri Nov 08 01:06:04 2013 WARNING: No server certificate verification method has been enabled. See for more info.
    Fri Nov 08 01:06:04 2013 NOTE: –fast-io is disabled since we are running on Windows
    Fri Nov 08 01:06:04 2013 Socket Buffers: R=[8192->8192] S=[8192->8192]
    Fri Nov 08 01:06:04 2013 UDPv4 link local: [undef]
    Fri Nov 08 01:06:04 2013 UDPv4 link remote: [AF_INET]
    Fri Nov 08 01:06:04 2013 MANAGEMENT: >STATE:1383852964,WAIT,,,
    Fri Nov 08 01:06:06 2013 TLS Error: client->client or server->server connection attempted from [AF_INET]
    Fri Nov 08 01:06:08 2013 TLS Error: client->client or server->server connection attempted from [AF_INET]
    Fri Nov 08 01:06:12 2013 TLS Error: client->client or server->server connection attempted from [AF_INET]
    Fri Nov 08 01:06:19 2013 TLS Error: client->client or server->server connection attempted from [AF_INET]
    Fri Nov 08 01:06:36 2013 TLS Error: client->client or server->server connection attempted from [AF_INET]

    Please help….


    • Hi VPN,

      VPNbook changed their OpenVPN passwords on Bonfire Night (5th November).

      Their new password is :
      Username: vpnbook
      Password: rU4ewRAb

      Good luck :)

  25. uwnthesis, i have followed the tutorial exactly how you said. I actually did this before with an old version of OpenVPN and it wouldnt work, so i seen this one here was newer, but i just cant get my system to recognize anything. It says im connected, and shows its green, everything is logged in fine. I chose TCP-80, went to the DNSTEST site, and well, my damn regular IP keeps showing up. Its like im connected, but im not ‘not connected’ if you know what i mean. No idea what is going on.

    One thing i do notice, is when i tried the PPTP earlier, that worked fine, but i couldnt download a single thing with it for torrents, etc. I couldnt even download ANYTHING for that matter, even from the browser, but i didnt want to sue PPTP anyway due to some of the flaws. Anyway, when i did use it though, it should the Network for it in Network Connections control panel area. Even my DYNDNS software i use updated my website with the Romanian IP. So it all worked ok, but was useless, since i couldnt download anything. It said i needed to open a GRE port (47 or whatever), but the pic on the site actually shows a router page showing GRE in a pull down menu. Well, my router shows nothing like that at all. I tried opening ports 1723 and 47 (both TCP and UDP), still, i cant even download a 5k torrent file or anything else for that matter. Nothing wants to come through.

    However, using the OpenVPN software, in the taskbar (and in Net Connections) i see my LAN (which is obviously fine), but then a second one say ‘IDENTIFYING…NO NETWORK ACCESS’ …So it seems something is blocking it. Weird how PPTP worked fine, dont know why this wont, very frustrating. Do i need to configure something in my router? Is there a Windows Service i have shut off that affects this? (I couldnt get PPTP to work until i turned on Telephony, SSTP and another service with too long a name for me to remember lol). But nevertheless, it seems Windows is trying to identify it, but its being blocked by something.

    Appreciate any help you can throw my way over here!

    • Hi Joey,

      Most ISP will filter and block by port or protocol header. They carry out deep packet inspections, which means they’ll look for certain protocols like PPTP… and probably that’s what’s happening… so we have to change tactic here for you.

      They can’t block port 80 or port 53 – so make sure that you use OpenVPN certificates for either of these 2 ports.
      PPTP on port 1723 is windows version of a VPN. It’s unsafe – so only use it for an emergency – and certainly not for downloading. It’s very likely that port 1723 will drop your packets at a firewall… its easy to block as it won’t affect other applications… that’s why port 80/53 is so good for bypassing ISP restrictions.
      Try reinstalling Openvpn – for port 80.
      I’m guessing you’re using VPNBOOK. Make sure you select a server that will allow downloading (some are configured for high speed web surfing only).

      Then test it with
      Then you’ll get a Romanian flag when it’s working.
      Or a lot of errors. If you get errors – cut and paste them for me… and I’ll try to work out what’s going on.
      VPN book changed their passwords on bonfire night (5 November) so you’ll need to check their passwords before we start… as that could be your problem right now :)

      If you don’t get a Romanian flag, then we haven’t got openvpn/VPNBOOK working.. and need to solve that first.

      Let me know how you get on.

  26. Ah thx for the quick reply:

    Ok, little update, its working again, i had to enable DHCP in windows, the configure it all manually with the DNS servers and all that stuff. It works, fine, shows the RO flag and my external IP and DNS servers dont show. Im connected and able to surf…but i still cant get my torrent app to work, nor can i download through the browser. Some sites even me blocked, uhhg. Is VPNBook blocking this ability or something?

    Also, my ISP doesnt block anything concerning torrents, never had a single issue when using SOCKS proxies or downloading directly. What im confused on how to do, is that in my torrent cliet, i would use the port forwarded with my routher. Im guessing with a VPN, this wouldnt apply anymore, since im not directly connected now. Im unsure what needs to be set up properly concerning all that.

    Also, i cant even post or comment back to you on your wordpress blog here, unless i get off the VPN …very weird. I like it alot, it works nicely, but….i mean, if i cant download or use many of my other apps with it, its defeating the purpse :-/

    PS: Ok wait, are you saying i need to use port 80 within my torrent client or something?

    • Hiya,

      Just checked VPNbook – you need the Euro servers for downloading. The UK /USA support fast surfing only…(no p2p protocol for downloading)
      Hope that helps. :)
      Euro1 OpenVPN Certificate Bundle
      Euro2 OpenVPN Certificate Bundle
      UK OpenVPN Certificate Bundle (optimized for fast web surfing; no p2p downloading)
      US OpenVPN Certificate Bundle (optimized for fast web surfing; no p2p downloading)

  27. Yep, i chose Euro2 certificate, and chose the vpnbook-tcp 80 in the OpenVPN client. Im not even trying to download as of yet, and just using CheckmytorrentIP site within my client and it just keeps coming back with errors like ‘host not found’, or ‘proxy closed peer.’

    Maybe this will help, i noticed when i was looking at VPN sites and they were giving tutorials, people were putting the host/port name/pass in the SOCKS5 section of their torrent client. Well, i tried that just now, i put the RO ip with port 80, and the user/pass, and tried to make a connection, but still, nothing works. Lol the only conclusion i can come to is something is blocking me, because i can surf fine, yet torrenting is completely borked no matter what i do. I even tried putting a SOCKS5 proxy in from a site with healthy proxies, that use user/pass and tried to connect that way, and it just gives me ‘connection closed by peer.’ (yet works fine without VPN).

  28. Oh another thing too, in my Network Connection in windows, it shows my LAN and LAN2 (VPN). It shows it was ‘Unidentified network’ and ‘no internet access’ with the RED X up top showing the the computer, the earth, then internet. Something tells me that there is a problem there and its no identifying it properly. However, i can still surf the web, but cant download anywhere…lol im just totally frustrated in how to troubleshoot all of this, ahrg.

    • If this network connection is wobbly then it will affect the VPN.

      OpenVPN relies on receiving it’s secret encryption keys within 60 seconds.
      If it doesn’t, then for your protection, it will close the connection, and try to restart it.

      So it look like you’re connecting via your ISP.

      In which case, use the Immuncity link sent over – and magnet links, and away you’ll go :)

      Immunicity will remove all censorship :)
      As can Startpage, and their Ixproxy link :)

      • Ok,, i tried everything possible, googled around and others had the same problem. VPNbook is blocking torrenting, its the only logical explanation. I mean, hey, its their stuff, so im not gonna argue that.

        However, i found another free service that didnt give me any problems, and i wanted to ask you about how safe it might be. What is funny, is that its based in RO, when i checked out the site, and has PPTP and OPenVPN with a ton of great perks. It even uses the same ISP or hosting service as VPN Book (Voxility). But the very odd thing about it, is there isnt much info the site, or its creators, and they seem like these ‘robin hood’ types who are saying things like ‘We did all this to help make people aware of how important privacy is, blah blah’ and how they are privacy advocated, etc.

        However, the thing that got my attention the most, is that when i checked DNS Leak after connecting to their system, it came back with FIVE DNS servers….located in the damn US. Now why would them being based in RO, use nameservers in the US? They were from L3 Communications. Now yea, sure, i can hide my own nameserver, even connected through a SOCKS5 when torrenting with even more protection…but with those US nameservers showing, does that pose a threat at all?

      • With a VPN, there are several “lighting rod” questions that you need to answer.

        1. They must not be based in your own country (so that court orders don’t apply).

        2. They must delete their server logs (within 24 hours if you can). IVPN delete their logs every 10 minutes, but they’re not free. VPNbook deletes logs every 3 days.. which isn’t great, but as a free service was not bad.

        3. Some VPN’s run by Telco’s store all your web browsing (eg Swiss Telco). Never use a vpn from a telco.

        4. Some VPN’s resell your browsing to advertisers (eg logmein).

        5. Some VPN’s hand over your data without a court order (eg hidemyass).

        So picking a VPN provider is VERY tricky.

        You’d need to research.. have they EVER handed over documents.

        Do they delete logs so that it’s impossible to get data even with a court order

        The Most important question.. is ARE they deleting their server logs, traffic logs, connection logs (they call them by various names). This is the big question.

        Voxility have a good privacy reputation.. so they’re okay.

        As for DNS servers… if you all the users on the VPN share a single IP.. it would be difficult to find out what websites you’re looking at – if the server logs have gone.

        They need to look for “sockets” which is your IP and PORT. If the server logs are gone, they can’t prove who it was.

        whats’ the website ? I’ll go lookup their privacy policy. But you’re right to question the use of US DNS. It may be for surfing speed.
        however if they’re Google’s DNS, then that is SERIOUSLY bad news.

        Let me know.

      • Hey Joey..

        Just checked out vpnbook page – they’ve got server problems at the moment.

        Service Temporarily Unavailable

        The server is temporarily

        Give the lads a couple of hours,and they should be back on line. They’re not paid.. they started off as a voluntary concern.. so it’s someone’s weekend that’s been cancelled :)

        They’ll probably be online by Monday :)

  29. Ahh wow. Yea, i heard about HMA and some others doing some sneaky things, really lame that is. And yea, i really dont want to even be close to anything in the US and even the UK and some other EU countries, like France and Germany, since they are all in bed together.

    The site is They seem nice, but…i just done like the DNS servers being in the US, and there is very vague contact info or anything on who they are exactly. I dont expect to know the name of their cats or their 1st born, but something just doesnt seem right with them and seems too good to be true. Check them out and let me know what you think.

    • hiya Joey,

      Vpnbook are issuing alerts that they’ve got server issues.
      Which explains a lot!! :)
      So you’ve been doing everything perfect, all along :)

      I go look up in the meantime for you

    • Hi Joey,

      Great find, they’re in “beta testing mode” at the moment…
      They’re based in Malta, like IVPN. If they are an offshoot of IVPN, then you’ve hit the jackpot.

      Their site says:
      1. Beta testing mode – so not actually up and running yet.
      2. The site advertises AES256
      3. I’ve downloaded the Certs – and it says AES128 inside. This could be an oversight, as they’re not officially online yet.
      It’s more like they’re getting the system stable at AES128 – as encryption puts a mega strain … generally you’d lose 90% of the connection speed… yep, it works at only 10% of an unencrypted connection.. but that is the price to be paid for security.

      Malta doesn’t require logging, so that’s cool.
      Ivpn are in Malta… so it could be coincidence… or not.
      Also they’re offering “multihop” technology… which as far as I know, is ONLY IVPN.
      Which could be coincedence – but looking unlikely now.
      The certs don’t support multihop technology – which the website says they offer. BUT again again, this has a feel of IVPN.

      IF they are an offshoot of IVPN – this is VERY good news for everyone :)
      As it’s a win win situation.

      Matters to keep in mind:
      1. No mention of log deletion times. We need this.
      2. The Multihop isn’t yet offered in their openvpn bundles
      3. Their openvpn is offering AES 128 – not the AES 256 advertised.

      But to qualify all this – they are in beta testing.. and might be part of the formidable IVPN group – YAY!!
      I’ll keep a close eye on this.
      Thanks for the heads up :)

      • Yea, they seem really nice, but like you said, since they are just starting out and in beta, time will tell on how much better (or worse) they are. Definitely packs quite a punch though for being free. Good news about VPN Book too, i knew something had to be wrong lol. Hopefully theyll work that out soon. I liked the results i seen earlier, was easy and fast to use , i just couldnt do much with it though lol.

        I was wondering too, i am wanting to purchase a VPN, as what im doing now is just putting some through my own tests. What do you feel in your humble opinon, are the top 5 VPNs out there? I always hear about PIA and HMA, but they are tied down to the US too much, so i want nothing to do with them. Then there is ExpressVPN, and VPN4ALL who some were saying are really good. Uhgg, this stuff is a whole new market right now, its like walking into an exchange or something and trying to find who and what are the best to invest in with so many choices , it gives you a headache :)

        Thanks for all the help on this though, you are an encyclopedia when it comes to this stuff hehe.

      • First, I have to be honest, I used IVPN in Malta. They delete their logs every 10 minutes, which is why I use them.. however they are at the pricey end, so I’ll try to be neutral for you.

        Make sure the VPN provider is outside of the US – if you live there. You don’t want US court orders to apply to your VPN provider.

        Torrentfreak does great surveys on this.. every year.

        Hang on.

        Now, you have “unbiased” information to work from.

        1. Dont use PPTP under any circumstances – use openvpn.

        2. Look for AES 256… if you can afford it.

        3.Look for court orders.. have they ever handed over data? Make sure they don’t log your traffic.

        I’m happy for you to use any VPN – providing that they are privacy based. I only say “no”, if I think you’re wandering into dangerous Territory (eg HMA etc).

        The TorrentFreak list is great to work from, and will really help you :)

        It’s been great speaking to you :)

  30. asif permalink

    dear uwnthesis,i have been using open vpn frm a long time with conf provided by was working fine,but since yesterday i have been facing a peculiar problem.i am getting connected but after 1 min or even less its getting disconnected sayin “Inactivity timeout (–ping-restart), restarting
    Sun Nov 17 02:10:48 2013 SIGUSR1[soft,ping-restart] received, process restarting”..bro pls provide sol to this asap

  31. asif permalink

    bro we are three frndz who are using ths vpn on our own computers and we all are facing the prob…but bro ths inactivity time out problem exist only if we download any file and it works fine if we browse…bro before we were two guys who used to use ths and now one frnd of mine askd fr it…bro pls provide a sol asap without making any of ma frnds asking to stop usin it

  32. asif permalink

    bro i jst found out that the connection is fine whn your connection speed is below 100KB/s but as your speed increases abve ths,evn if u browse it gets disconected…bro pls provide the sol pls…..

    • In the meantime, you could try out the alternative free VPN.
      It’s identical to VPNBook – but in beta testing mode… others have used it fine.

      Username: freevpnme
      Password: gnDc08Yd
      TCP 80, 443
      UDP 53, 40000
      Unlimited Bandwidth
      Torrents Allowed
      No Logging

      I’ll go check VPNBook for errors – but switch and see if this helps out in the shortterm.

      They’re running AES128 the same as VPNBook.

      • asif permalink

        bro uwnthesis i am usin freevpnme ,surfing is good but im still hving disconnection problems whn im downloading

      • Hi asif,
        Can you send me any other messages?
        The time outs relate to a second device. Do you have a second laptop or mobile with a vpn installed on it?
        That seems to be the trigger for you.
        It would be highly unusual to have 2 VPN systems with the same fault.. so rather than the provider side, it looks like you’ve got 2 devices somewhere that are conflicting for control. Hope that helps :)

    • Service Temporarily Unavailable

      The server is temporarily down.

      **VPNBOOK** are having a hiccup so switch to to continue working. :)

    • Hi asif,
      I’m guessing that if you’re connecting at 100kb, then time outs have stopped?
      If you’re downloading, then you may need to set the limit to say 75kb, to keep things stable.
      VPNBook still have an alert out over server issues, so the service may still be intermittent..
      I don’t know if they’re limiting your downloading due to ongoing server maintenance, but this is likely.

  33. asif permalink

    bro uwnthesis i checked it fully bro only two frndz of mine are using the ovenvpn and i alone use the freevpnme config..but still its gettin disconnected …is thr any sol for ths prob bro…

  34. asif permalink

    jst time out error bro…and yes i jst now found out that even samrando vpn is also havin the same seems my isp has blockd smethng or the othr …are thr any soln fr ths bro because it seems tht the prob is wth ma isp…

    • the Isp can block on protocol and port.
      See if TCP Https on port 443 – which is encrypted will work.

  35. asif permalink

    no bro the only ports tht work for me is UDP53…..any soln for ths…the othr severs of othr ports dnt get connected…it gives ths error with othr ports “STATE:1384794266,TCP_CONNECT,,,
    Mon Nov 18 22:34:27 2013 TCP connection established with [AF_INET]
    Mon Nov 18 22:34:27 2013 TCPv4_CLIENT link local: [undef]
    Mon Nov 18 22:34:27 2013 TCPv4_CLIENT link remote: [AF_INET]
    Mon Nov 18 22:34:27 2013 MANAGEMENT: >STATE:1384794267,WAIT,,,
    Mon Nov 18 22:35:12 2013 Connection reset, restarting [-1]
    Mon Nov 18 22:35:12 2013 SIGUSR1[soft,connection-reset] received, process restarting
    Mon Nov 18 22:35:12 2013 MANAGEMENT: >STATE:1384794312,RECONNECTING,connection-reset,,
    Mon Nov 18 22:35:12 2013 Restart pause, 5 second(s)………………..bro othr ports dont work…pls gve a sol for udp 53 plsssss

  36. Hi Asif, Check out this link.

    the connection was dropped; this can be done by an intermittent router or by the openvpn server

    So TCP has been blocked, and only UDP port 53 (DNS) works.
    If both VPN providers are dropping your connection, it’s not the VPN providers – it’s a local network /router issue.

    Just in case it’s unstable, don’t use wireless, use a wired connection (laptop into a network cable).
    If you’re in a college – use a different room – which may have a different router. But if it’s both and that are dropping connections, then it’s not them.. but your network. Sorry.

  37. asif permalink

    ya bro m in college and yes ive tried with different routers also and the prob is same..and ya bro its the prob caused by ma college..if iam using the freevpnme config of uk udp53 and downloadin with a speed limit of 50 thn its workin fine…but im not able to browse at same tym…perhaps they have put a speed cap so tht if speed increases abv 60 -70 it will get disconnected….don,t u have any sol for ths bro…i really need it bro cause a speed of 50 is not at all good…pls bro help me

  38. Hey, uwnthesis, i went with IVPN and wow, great service they got going there, thanks for the recommendation, its definitely paying off. Getting DD-WRT to work with it was truly a nightmare though, but it payed off lol (i just knew it wouldnt be easy). I was wondering if you could answer a question for me though, on a technical issue (nothing serious).

    I was wanting to separate/segregate one of the wireless connections in my home from the VPN, as the user on that machine doesnt need to be on it and has no use for it there. I looked around in the router settings (DD-WRT) to see where i could exempt specific wireless clients from the VPN , but i dont see anything, except the following on the sidebar under ‘OpenVPN Client’, where it says:

    “Policy based Routing:
    Add IPs/NETs in the form to force clients to use the tunnel as default gateway. One line per IP/NET.”

    I have a section under where all the Certs and Keys need to be pasted, where there is a box for ‘Policy Based Routing’…However, i dont think it would be for what im wanting to do here, as it says ‘forcing them’, and i want to EXEMPT/REMOVE them. Basically, i want one of my wireless clients to just connect to the external WAN side of the router and use my direct ISP connection and NOT connect to the VPN. Is there any way of going about this? Its just a nuicance concerning some issues, as when this person wants to make Skype phone calls, they cant do it, since it wont allow the call to go through due to them ‘being’ in a foreign country (the VPN) than from where they are actually located and where the phone call is going toward. (The call will just hang right up after dialing and asks for Skype credit, even though we have a paid subscription). However, if you know of a way around that problem, then they can stay on the VPN then and it wont matter (maybe you need to call using the country code of where the vpn is or something lol…or maybe a proxy in your country of origin, running on top of the VPN?). I didnt think it would be an issue, but obviously Skype uses the internet to make the phone calls, and if you are in the UK, for example, yet calling from a VPN in Hong Kong, there is apparently going to be an inconsistency there.

    • Hi Joey,
      Great Question!
      Well done on getting the Router to encrypt all your comms – that’s awesome!!

      To answer your first question… my first thoughts are to do with the router itself.
      Some routers allow a guest network – which can be given bandwidth on an “open” basis. They operate a second or 3rd network from your router. That would make your primary router IP, your IVPN router. All devices on this subnet eg would use IVPN for protection.

      Then your second subnet would be… and this would be your guest network. Devices connecting to this would be on a second subnet.. and use the ISP not IVPN.

      However, this would need a relatively new powerful router. I’m thinking of the Asus Dark Knight sort of router.

      Plan A
      List of Guest network Routers and Guides

      Plan B – Use DDWRT to get new isolated AP’s


      The Howtogeek might be a great solution for you, as you’re on DDWRT :)

      At the bottom of the page, in the “Virtual Interfaces” section, click on the Add button. The previously empty “Virtual Interfaces” section will expand with this prepopulated entry:

      Great question… THANK YOU!! So much.

      I’ll go research more on the OpenVPN.. but that’s 2 idea’s to get you started. Hopefully plan B would be free – and use DDWRT to solve all your problems :)

  39. Pikes permalink

    hey please let me know what requirements do I need for windows 7 or windows 8 eg. Java runtime ect

  40. sunny permalink

    i from India . there many port are block :(
    now no way for using free internet
    i try with udp 53 but ……….
    plz help me
    this is vpn log
    Tue Dec 10 19:31:54 2013 NMDVPN 2.1.4 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] built on Apr 25 2011
    Tue Dec 10 19:31:54 2013 WARNING: No server certificate verification method has been enabled. See for more info.
    Tue Dec 10 19:31:54 2013 NOTE: NMDVPN 2.1 requires ‘–script-security 2′ or higher to call user-defined scripts or executables
    Tue Dec 10 19:31:54 2013 NOTE: –fast-io is disabled since we are running on Windows
    Tue Dec 10 19:31:54 2013 LZO compression initialized
    Tue Dec 10 19:31:54 2013 Control Channel MTU parms [ L:1558 D:138 EF:38 EB:0 ET:0 EL:0 ]
    Tue Dec 10 19:31:54 2013 Socket Buffers: R=[8192->8192] S=[8192->8192]
    Tue Dec 10 19:31:54 2013 Data Channel MTU parms [ L:1558 D:1450 EF:58 EB:135 ET:0 EL:0 AF:3/1 ]
    Tue Dec 10 19:31:54 2013 Local Options hash (VER=V4): ‘66096c33′
    Tue Dec 10 19:31:54 2013 Expected Remote Options hash (VER=V4): ‘691e95c7′
    Tue Dec 10 19:31:54 2013 UDPv4 link local: [undef]
    Tue Dec 10 19:31:54 2013 UDPv4 link remote:
    Tue Dec 10 19:32:54 2013 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
    Tue Dec 10 19:32:54 2013 TLS Error: TLS handshake failed
    Tue Dec 10 19:32:54 2013 TCP/UDP: Closing socket
    Tue Dec 10 19:32:54 2013 SIGUSR1[soft,tls-error] received, process restarting
    Tue Dec 10 19:32:54 2013 Restart pause, 2 second(s)
    Tue Dec 10 19:32:56 2013 WARNING: No server certificate verification method has been enabled. See for more info.
    Tue Dec 10 19:32:56 2013 NOTE: NMDVPN 2.1 requires ‘–script-security 2′ or higher to call user-defined scripts or executables
    Tue Dec 10 19:32:56 2013 NOTE: –fast-io is disabled since we are running on Windows
    Tue Dec 10 19:32:56 2013 Re-using SSL/TLS context
    Tue Dec 10 19:32:56 2013 LZO compression initialized
    Tue Dec 10 19:32:56 2013 Control Channel MTU parms [ L:1558 D:138 EF:38 EB:0 ET:0 EL:0 ]
    Tue Dec 10 19:32:56 2013 Socket Buffers: R=[8192->8192] S=[8192->8192]
    Tue Dec 10 19:32:56 2013 Data Channel MTU parms [ L:1558 D:1450 EF:58 EB:135 ET:0 EL:0 AF:3/1 ]
    Tue Dec 10 19:32:56 2013 Local Options hash (VER=V4): ‘66096c33′
    Tue Dec 10 19:32:56 2013 Expected Remote Options hash (VER=V4): ‘691e95c7′
    Tue Dec 10 19:32:56 2013 UDPv4 link local: [undef]
    Tue Dec 10 19:32:56 2013 UDPv4 link remote:

    • Hi Sunny,

      These errors are saying that they can’t exchange the super secret keys within 60 seconds.

      If you can’t connect to the networks for VPNBOOK, then try the network for – as I’ve heard they are relatively fast.
      A word of caution, are in beta testing, and the key they give you is only AES 128 not the AES 256 they advertise.

      Here’s how to do it.

      Try to speed up the network connections.
      Put a wire into the back of your router to connect it to your laptop. Don’t run on wireless, until you can get the speeds fast enough.
      Once we can connect you, we can go back to wireless.
      We need to get your secret keys exchanged within 60 seconds. :)
      Let me know how you get on.

  41. Requ permalink

    Options error: Unrecognized option or missing parameter(s) in vpnbook-euro1-tcp443.ovpn:17: (2.0.9)
    Use –help for more information.

    Please help .

    • Hi Requ,

      Found an example of this error on stack overflow.

      It looks like a simple typo somewhere – as you can see in the link.
      They’d used
      ca ca.crt
      instead of ca.crt

      Hidemyass wiki asks that you remove any old certificates to avoid this error (the system is using an old config).

      So remove any installed configs, and try a new reinstall and that should clear it up.

      The error will be simple – it’s not a major fault, but a deinstall and reinstall might be the quickest solution for you.

      Let me know how you get on :)

    • Hi Requ,

      How did you get on?
      Looks like a baby typo is causing the problem. A deinstall of the old client config/certs and fresh install should clear up the errors for you. :)

  42. hey bro uwnthesis iam having a lil problem with the vpn…whn i am downloading some stuff i get gud speed but when i watch live streaming such as cricket an all ,it does not pic up speed and keeps buffering…is there any sol to this bro..pls reply asap

    • Hi Asif,
      The VPN can only operate at the ISP speeds, it can’t improve them.

      Can you run a speedtest on your ISP (with the VPN).
      Then run a speedtest using the VPN.

      Ideally with a paid for service, you should see no difference in speed.

      If on a free VPN, then check to see if the server allows P2P downloading. If it does, then get off this server as it will operate under a heavy load. Look for a browsing only server – that will maximise your speed.

      TCP is slower than UDP.
      TCP is connection orientated. Switch to running on a UDP port if you haven’t already.

      Let me know if these tips work. They should removing the buffering for you :)

  43. Hi uwnthesis,
    I am facing a weird problem with freevpnme.Firstly it takes ahell lot of tym to connect,sometimes more than 45 mins,and secondly when it gets connected after sometimes the upload speed increases and download goes down and then bcomes ohk again…Bro pls help me solve these problems asap…btw iam using windows 8.1 pc…

    • Hi Asif,

      Are you using a Windows PPTP or OpenVPN?

      Make sure you’re on OpenVPN.
      What errors are you getting on the connection log?

  44. Hi Uwnthesis,
    I am using openvpn, im getting errors like this shown below..and it takes a very long tym to connect
    Sat May 17 12:03:54 2014 UDPv4 link remote: [AF_INET]
    Sat May 17 12:03:54 2014 MANAGEMENT: >STATE:1400308434,WAIT,,,
    Sat May 17 12:04:54 2014 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
    Sat May 17 12:04:54 2014 TLS Error: TLS handshake failed
    Sat May 17 12:04:54 2014 SIGUSR1[soft,tls-error] received, process restarting
    Sat May 17 12:04:54 2014 MANAGEMENT: >STATE:1400308494,RECONNECTING,tls-error,,
    Sat May 17 12:04:54 2014 Restart pause, 2 second(s)
    Sat May 17 12:04:56 2014 WARNING: No server certificate verification method has been enabled. See for more info.
    Sat May 17 12:04:56 2014 NOTE: –fast-io is disabled since we are running on Windows
    Sat May 17 12:04:56 2014 Socket Buffers: R=[65536->65536] S=[65536->65536]
    Sat May 17 12:04:56 2014 UDPv4 link local: [undef]
    Sat May 17 12:04:56 2014 UDPv4 link remote: [AF_INET]
    Sat May 17 12:04:56 2014 MANAGEMENT: >STATE:1400308496,WAIT,,,
    Sat May 17 12:05:56 2014 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
    Sat May 17 12:05:56 2014 TLS Error: TLS handshake failed
    Sat May 17 12:05:56 2014 SIGUSR1[soft,tls-error] received, process restarting
    Sat May 17 12:05:56 2014 MANAGEMENT: >STATE:1400308556,RECONNECTING,tls-error,,
    Sat May 17 12:05:56 2014 Restart pause, 2 second(s
    bro pls temme how do i get connected fast..pls reply asap

    • Hiya,
      The error that’s giving us away is this bit…
      TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)

      OpenVPN needs to exchange the super secret keys in 60 seconds or it closes the connection.

      Are you on a slow wifi? If you are, trying using a cable in the back of your router.
      Another thing to test out is to ping the IP of the servers… this is a network problem rather than a config problem.
      You need to find a way to speed up your network connection.
      Now if the speed issue is your local ISP, there’s nothing that can be done. But if you’re on a wifi network, switch to a cable and ethernet… that may make your connection faster.

      Lastly, make sure you use UDP.
      UDP is “connectionless” and therefore much faster than TCP/IP – as TCP is “connection orientated” and therefore slower.

      Switching to UDP may help.

      So the action plan is
      1. Use a cable and Ethernet rather than Wifi.
      2. Use UDP rather than TCP for extra speed.
      3. Try a different server – one nearer to you. If I’m in London, and I try to connect to a server in Australia.. the network is much slower. Try to select a VPNBook server that’s nearest to you in geography.

      Let me know the error codes, as I’m sure that we’ll get it working for you :)

  45. I’ve setup OpenVPN and manage to get it running after loading the ovpn file. I manage to connect to Euro2 TCP80 and got an assigned IP address (10.12.X.X). The thing is when i go to i still get my ISP IP listed. Are there any additional settings that needs to be done?

    • Hi,
      If you’ve got the IP, then openvpn seems to be working okay for you.

      You can manually clear the DNS cache.
      You’ll need a command prompt with admin rights to do this.
      Start > all programs > accessories > command prompt > right click > run as administrator
      a black tv screen will appear – type in

      ipconfig /flushdns

      Hope that helps. To double check your IP is under Vpnbook use

      Hope that helps :)

  46. Bob Johnson permalink

    I installed OpenVPN and followed all the steps, however I noticed that the newest bundle on vpnbook does not include the crt certificate file. Regardless when I connected to network (Euro2 UDP 25000 for example), the IP address assigned only changed my local address, not my public IP Domain…. did I do something wrong?

    my IP from the test link provided is still the same…

    • Hi Bob,

      If your IP is the same, then you’re not connecting okay.
      The best thing to do is remove openvpn and try to reinstall it.
      The .crt info is now contained in the bundles.
      If you download euro2 and view udp 25000 you’ll see the key – it looks like this


      Have another go at reinstalling openvpn, and if you’ve any problems let me know.
      for instance under windows networking do you get a local area network connection, identified at the bottom as “TAP – WIN 32 ADAPTER”.. this is the tun/tap adapters created by openvpn. As you’re on windows at a guess, you’ll have a TAP adapter. Has this been created?
      OpenVPN runs on 4 network adapters – 2 real and 2 fake or “virtual”. the TAP adapter is the “virtual” and secret tunnel being created between your real card on your laptop and the real card on the VPNBook Server in say Romania. The colours of openvpn book will change from red (stopped) to amber (checking the password) to green (connected). If the adapters are being created, then you can right click on this icon > show status or right click on this icon > show log. The log may give you an error message, which would help me tell you what the problem is. You have to run OpenVPN as Administrator – and at a guess this is likely to be the problem with the first install. You need to right click > run as admin when running OpenVPN as it needs admin rights to create the “virtual” adapters. Hope that helps… and isn’t an overload. Let me know if you’ve any problems.

      • pede permalink

        Hi Thanks for the totorial. however I have the problem that I can connet via Euro2 80. The Icon goes green and I get an new IP address. Hoever when testing with MY IP or DNS leaktest it shows my normal ip provider.. I have restarted , I have Flushed, Ihave installed the fix on leaktest,, same proble´m. I am running windows 8.1 ..

  47. Paul permalink

    This is a great ‘how to’. I was trying to get this get combination to work unsuccessfully! My IP was’nt located in Europe. I then uninstalled Open VPN and reinstalled using this write up. BINGO! Thank you. Funnily enough when I uninstalled and reinstalled, my security certificates were still present in the config folder??? I didn’t have to manually add them again.

  48. Paul permalink

    again. – sorry I just wanted to make sure I checked the ‘Notify me of new posts via email.’

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s


Get every new post delivered to your Inbox.

Join 160 other followers

%d bloggers like this: