Maybe you've used Tunnelbear, maybe you have an alternative, but in any case it's a competitively priced VPN with servers in many countries and an anonymous proxy. If you're using it, maybe you've wondered like me, if you can do away with the GUI in Windows, or automate it as a service when booting, dunno. This is a process much like the Linux one suggested in their official page, with a couple of steps added.
Tunnelbear publishes some configuration files at this page, as outlined in their guide which you need to download and unzip somewhere, but what they don't explain there is that you also need their OpenVPN private key, found here.
Once you've downloaded both openvpn.zip and PrivateKey.key.zip, decompress them in a folder (I used an OpenVPN subfolder in Documents), and there should be a long list of ovpn files corresponding to the countries where they've got servers. You need to edit whichever ones you're going to use since they won't work out of the box. Here's an example file exactly as unzipped:
SSclient
dev tun0
proto udp
nobind
ns-cert-type server
persist-key
persist-tun
reneg-sec 0
dhcp-option DNS 8.8.8.8
dhcp-option DNS 8.8.4.4
redirect-gateway
verb 5
auth-user-pass
ca CACertificate.crt
cert UserCertificate.crt
remote au.lazerpenguin.com 443
cipher AES-256-GCM
auth SHA256
keysize 256
Now as it is, the OpenVPN client will complain about an unrecognized option on line 19, keysize, but deleting the line will work. Even still, it complains you can't use cert without key, so add a line after cert reading key PrivateKey.key. Now you should create a text file called tb-auth.key containing my login data from Tunnelbear, email and password, each in a single line and add tb-auth.key after auth-user-pass like so auth-user-pass tb-auth.key, which will autolog you and is necessary if you are installing OpenVPN as a service (the GUI will just ask for your credentials, but will use the credentials there if provided). This file goes in the same folder as the ovpn file and the PrivateKey.key file. This was suggested by a now archived old Archlinux tutorial. Your finished file should look like this:
SSclient
dev tun0
proto udp
nobind
ns-cert-type server
persist-key
persist-tun
reneg-sec 0
dhcp-option DNS 8.8.8.8
dhcp-option DNS 8.8.4.4
redirect-gateway
verb 5
auth-user-pass tb-auth.key
ca CACertificate.crt
cert UserCertificate.crt
key PrivateKey.key
remote au.lazerpenguin.com 443
cipher AES-256-GCM
auth SHA256
Next step, you need to install an OpenVPN client, I used the one at https://openvpn.net/client/, which installed quickly. After agreeing to their terms, you reach a window asking for the configuration URL with a tab that lets you use a file instead. Go there and we'll use the file we configured earlier. Once you browse to it, the details will auto fill and you can just hit connect. This has the advantage of using a GUI where you can click on whichever profile you want, switching servers easily. I'd rather have it run automatically, it's why I did away with the Tunnelbear app, so let's head to the next step:
The OpenVPN client supports starting as a service which we can configure on an elevated command line. Open it up then cd "%ProgramFiles%\OpenVPN Connect\", where you can install it with ovpnconnector.exe install, and choose a profile with ovpnconnector.exe set-config profile <FULL_PATH_AND_FILENAME_TO_PROFILE.OVPN>.
So after choosing a server, you need to start the service like so: ovpnconnector.exe start.
If you feel like it, you could make a batch file to switch profiles and put it in your desktop, kinda like:
@ECHO OFF
CLS
ECHO 1.Mexico server
ECHO 2.Australia server
ECHO 3.UK server
ECHO 4.Russia server
ECHO 5.Latveria server
ECHO 6.Stop service
ECHO.
CHOICE /C 123456 /M "Enter your choice:"
:: Note - list ERRORLEVELS in decreasing order
IF ERRORLEVEL 6 GOTO Stopping
IF ERRORLEVEL 5 GOTO Latveria
IF ERRORLEVEL 4 GOTO Russia
IF ERRORLEVEL 3 GOTO UK
IF ERRORLEVEL 2 GOTO Australia
IF ERRORLEVEL 1 GOTO Mexico
:Stopping
Echo Stopping OpenVPN service
"%ProgramFiles%\OpenVPN Connect\ovpnconnector.exe" stop
GOTO End
:Latveria
ECHO Latveria server selected
"%ProgramFiles%\OpenVPN Connect\ovpnconnector.exe" stop
"%ProgramFiles%\OpenVPN Connect\ovpnconnector.exe" set-config profile"D:\Users\Yonatan Rivera\Documents\OpenVPN\Latveria.ovpn"
"%ProgramFiles%\OpenVPN Connect\ovpnconnector.exe" start
GOTO End
:Russia
ECHO Russia server selected
"%ProgramFiles%\OpenVPN Connect\ovpnconnector.exe" stop
"%ProgramFiles%\OpenVPN Connect\ovpnconnector.exe" set-config profile "D:\Users\Yonatan Rivera\Documents\OpenVPN\Russia.ovpn"
"%ProgramFiles%\OpenVPN Connect\ovpnconnector.exe" start
GOTO End
:UK
ECHO UK server selected
"%ProgramFiles%\OpenVPN Connect\ovpnconnector.exe" stop
"%ProgramFiles%\OpenVPN Connect\ovpnconnector.exe" set-config profile "D:\Users\Yonatan Rivera\Documents\OpenVPN\UK.ovpn"
"%ProgramFiles%\OpenVPN Connect\ovpnconnector.exe" start
GOTO End
:Australia
ECHO Australia server selected
"%ProgramFiles%\OpenVPN Connect\ovpnconnector.exe" stop
"%ProgramFiles%\OpenVPN Connect\ovpnconnector.exe" set-config profile "D:\Users\Yonatan Rivera\Documents\OpenVPN\Australia.ovpn"
"%ProgramFiles%\OpenVPN Connect\ovpnconnector.exe" start
GOTO End
:Mexico
ECHO Mexico server selected
"%ProgramFiles%\OpenVPN Connect\ovpnconnector.exe" stop
"%ProgramFiles%\OpenVPN Connect\ovpnconnector.exe" set-config profile "D:\Users\Yonatan Rivera\Documents\OpenVPN\Mexico.ovpn"
"%ProgramFiles%\OpenVPN Connect\ovpnconnector.exe" start
GOTO End
:End
Be warned that batch file gives no other success indication unless opened in a command line, it assumes the service was installed previously, and it needs to run as admin.
Optionally, you can choose a log file location with ovpnconnector.exe set-config log <FULL_PATH_AND_FILENAME_TO_LOGFILE.LOG>, or else it will write it to the OpenVPN folder by default. That's it. Now the OpenVPN client is running as a service, and you should be protected, the service autostarting on boot.
Top comments (0)