How to create a VPN for secure web browsing using Hamachi.


Do you feel insecure when browsing the internet over an open unsecured wireless access point?  

83 members have voted

  1. 1. Do you feel insecure when browsing the internet over an open unsecured wireless access point?

    • Yes
      52
    • No
      31


Recommended Posts

How to create a VPN for secure web browsing using Hamachi.

Do you feel insecure when browsing the internet over an open unsecured wireless access point? Well some people do, myself included. In this guide I will explain how to create a VPN for web browsing using Hamachi in combination with privoxy.

For this to work its best to use a computer that is always turned on and never goes to sleep. I prefer setting it up on an old low end computer that you just put in a corner and forget about. (except for installing updates on of course)

Step 1: Installing Hamachi

Go to the following address http://files.hamachi.cc/HamachiSetup-1.0.3.0-en.exe to download and install hamachi. They have a paid version and a free version. For what we need it for, the free version will work just fine. During the install tell hamachi to start with windows.

Step 2: Creating a new Hamachi network.
This will be the account that your laptop will connect to.

1) Click the triangle icon in the bottom right of hamachi.
2) Click "Create a new network"
3) Type in a network name. For the password I'd recommend going to https://www.grc.com/passwords.htm. On the page are 3 different sets of 64 character passwords. Every time you refresh the page a new set will be generated. Copy and paste one into the password field of hamachi. I'd also recommend you paste the same password into notepad and save it so you can copy and paste it later to connect to this account.

Hamachi is now ready to go. Next we will setup the proxy server portion. For this guide we will be using privoxy http://www.privoxy.org/. I'm sure there are other ones that will work too, but this one is free and it gets the job done.

Step 3: Setting up and configuring privoxy.

1) Download and install privoxy from http://www.privoxy.org/. You'll also want to put a copy of the privoxy icon in your startup folder.
2) Launch the application
3) Click Options / Edit Main Configuration. This will open up a notepad document. Search the document for "listen-address 127.0.0.1:8118. You want the one that does not have an asterisk in front of it. Replace the 127.0.0.1 with the 5.x.x.x number that is displayed on the top of hamachi.
4) Exit and save the document. You may have to restart the application for the change to take in effect.

Step 4: Setting up the VPN on your laptop.

1) Install hamachi on your laptop and create another new account.
2) Click the triangle in the bottom right of hamachi. This time choose "join an existing network".
3) Type in the name and password of the server you created in step 1 #3. Copying and pasting the password usually works the best.

Step 4: Setting up your web browsers to feel the proxy love.

This step is pretty simple. Go into the proxy options of your web browser. When it asks for an IP address give it the hamachi IP address of the server. When it wants a port number give it 8118.

That's it. You're done! Now when you are in a public access point and connected to hamachi all your web browsing traffic should be encrypted. Now lets test it to see if everything is working. Open the web browser that you just configured to go through a proxy server. Go to a website that displays your internet IP. If everything is working you should get the IP of your internet connection at home. Of course if you are testing this at home, it really won't do much good. You could always mooch off someones wireless access point just long enough to see which IP the site is giving you.

Note: Just remember if you have multiple web browsers on your computer, only the ones with their proxy settings configured will be encrypted.

Edited by warwagon
  BudMan said:
^ yeah lots of people are not aware of how to circumvent browsing policies at work or school.. This is a great guide on how to do exactly that.

This _mostly_ won't work for circumvention if the network and policies are set up properly, and I don't think the guide is meant as such. It's a way to safe surf encrypted in a public environment.

  BudMan said:
^ yeah lots of people are not aware of how to circumvent browsing policies at work or school.. This is a great guide on how to do exactly that.

My intent in writing this guide was to give people (like shockz) a more secure way of browsing the internet on an unsecured wireless network. (Example: Starbucks or the local hospital) Nothing more. I hadn't even thought of the workplace and school ramifications. What workplace or school allows 3rd party installation of programs like Himachi? They have a lot larger problem if they are that unsecured.

Edited by warwagon

im pretty sure you need admin rights to install hamachi because it installs a driver. most schools wont let you do that type of thing, probably :p

nice guide tho, although i find hamachi a bit slow sometimes, i just use putty and stunnel (takes a bit more setting up though :p )

  Colin-uk said:
im pretty sure you need admin rights to install hamachi because it installs a driver. most schools wont let you do that type of thing, probably :p

nice guide tho, although i find hamachi a bit slow sometimes, i just use putty and stunnel (takes a bit more setting up though :p )

ya this one is pretty much, click click type type and done. Only reason I didn't port forward some ports in from the router instead of using hamachi is, I don't like to have to open ports on my server if I don't have to. because even if you couldn't install hamachi you could always port forward 8118 on your server. Then just use your IP address assuming it doesn't change. Though the school really should have all the ports locked down other than whats needed like port 80.

  • 2 weeks later...
  warwagon said:
My intent in writing this guide was to give people (like shockz) a more secure way of browsing the internet on an unsecured wireless network. (Example: Starbucks or the local hospital) Nothing more. I hadn't even thought of the workplace and school ramifications. What workplace or school allows 3rd party installation of programs like Himachi? They have a lot larger problem if they are that unsecured.

with Putty you can set up a tunnel and in firefox set it to use the tunnel (proxy settings). Both these programs can be used without having to install them

  • 1 month later...
  • 2 months later...
  • 4 weeks later...
  • 1 year later...
  On 01/09/2010 at 16:01, Sawyer12 said:

Do I need to forward port 8118 to get this to work outside?

Not if you connect via hamachi. Once connected with hamachi it's like both computers are on the same internal lan.

This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Posts

    • Some AMD Ryzen users can get free Windows performance boost with this simple system tweak by Sayan Sen AMD understands that there is a lot of demand for its X3D processors and for good reason too, since they offer some of the best gaming experiences. As such, the company plans to launch a new 6-core Ryzen 5 9600X3D for those who may not want to spend top dollar on a 9800X3D. What makes X3D special is the densely packed last level cache (LLC) wherein the L3 (level 3) cache is 3D die-stacked such that there is a whole lot of it that the cores can access on demand all within the smallest footprint. This is said to help with latency especially, and games happen to be quite sensitive to it since they are a mixed workload and so there is a lot of to-and-fro. However, despite that fact, users have noticed micro-stuttering and freezes on Ryzen X3D CPUs. Although there is no official fix, some of the affected users have managed to resolve the issues by tweaking a motherboard setting. The tweak is related to a setting called "GLOBAL C-STATE CONTROL" (it may be called something else by your motherboard vendor) and changing it to 'Enabled' from 'Auto' could fix stuttering and lag-related issues in games. If you are not familiar with them, Processor Power Management is done through Advanced Configuration and Power Interface (ACPI) P-states or C-states. While P-states or performance states handle CPU voltage-frequency scaling, C-states deal with CPU sleep states so that some of the CPU functions, which are not necessary at that moment, are disabled. The P-states and C-states work together to make the processor run more efficiently. It helps the OS and apps determine which cores can be parked. The Global C-state control setting helps users manage not only the DF and CPU core C-states but also the I/O C-states too. For those wondering, DF here refers to Data Fabric or AMD's high bandwidth Infinity Fabric interconnect between CPUs, GPUs, and more, on AMD systems. By default, this is set to "Auto" which also means that it is "Enabled" by default. However, in the case of X3D parts, Auto may set this setting to "Disabled" and thus manually toggling it to "Enabled" may be necessary. X3D processors, the dual CCD (core complex die) ones especially, have their V-cache on a single CCD. If the CPPC (Collaborative Processor Performance Control), which lets an OS like Windows control the "preferred core" and clock speed boost, isn't working optimally to assign the correct gaming CCD, then this fix could well work. Global C-State Auto: Global C-State Enabled: We ran a benchmark on our Ryzen 9 9950X3D to see if toggling the settings would make a difference, and well, it didn't in the case of AIDA64. However, since this is a synthetic test that measures cache and memory exclusively, we can't definitively conclude that the fix will also not make a difference in the case of games. Another remedy for stuttering is to disable the monitoring of the "Power percent" metric on MSI Afterburner if you have it on. This has been a long-known issue and in fact can help you even if you are not using an X3D CPU. Source: Reddit (link1, link2) via YouTube
    • I only have one contact on WhatsApp. And that contact has sms also. I have many more contacts that use WhatsApp also, but everyone defaults to use iMessage, SMS or RCS anyway. Not a loss for me. I'm in Norway where mostly nobody uses WhatsApp.
    • Apple is boring for a kid. Only fun is browsing websites for HTML games. A PC with steam is another story. Of course if the child plays video games all day then maybe that might not be a good idea. :-)
    • Looking for a specific setting in Settings? Sorry, the option just doesn’t exist as you’d need to elevate for that. Want to do something quickly and efficiently? Nah, forced to use a “modern” interface which takes far longer to achieve what you’re looking to do. (Example: disable a NIC)
    • Yet the best laptop for all day battery life is a Mac, hands down, no contest. Windows is bloated and power management is rubbish. Search indexer. Defender. Malicious Software Removal Tool. Windows Update (+DISM). Office CTR. Telemetry. Disclaimer: I own a surface laptop studio, multiple gaming desktops, server, and a macbook pro.
  • Recent Achievements

    • One Month Later
      DecaffKnight94 earned a badge
      One Month Later
    • Dedicated
      S.P earned a badge
      Dedicated
    • One Month Later
      adxnksd42031 earned a badge
      One Month Later
    • Rising Star
      aphanic went up a rank
      Rising Star
    • Contributor
      GravityDead went up a rank
      Contributor
  • Popular Contributors

    1. 1
      +primortal
      663
    2. 2
      ATLien_0
      261
    3. 3
      Michael Scrip
      234
    4. 4
      Steven P.
      161
    5. 5
      +FloatingFatMan
      151
  • Tell a friend

    Love Neowin? Tell a friend!