{"video_id":"KcxKWudhkpc","title":"Should You Make Your Own VPN?","channel":"Linus Tech Tips","show":"Linus Tech Tips","published_at":"2020-05-05T14:53:29Z","duration_s":493,"segments":[{"start_s":0.24,"end_s":6.72,"text":"which vpn provider can we trust at this point nordvpn failed to disclose their","speaker":null,"is_sponsor":0},{"start_s":4.48,"end_s":11.44,"text":"hack in a timely manner tunnelbear and then pia got acquired by mcafee and cape","speaker":null,"is_sponsor":0},{"start_s":9.28,"end_s":15.28,"text":"technologies respectively both companies with spotty histories with respect to","speaker":null,"is_sponsor":0},{"start_s":13.519,"end_s":19.84,"text":"user privacy i mean it's enough to raise the question can't you just roll a vpn","speaker":null,"is_sponsor":0},{"start_s":17.84,"end_s":24.4,"text":"made by the one person you can definitely trust online yourself the","speaker":null,"is_sponsor":0},{"start_s":22.64,"end_s":28.4,"text":"answer is yes you definitely can but whether or not","speaker":null,"is_sponsor":0},{"start_s":26.56,"end_s":32.399,"text":"you should treat your eyes to long-lasting comfort","speaker":null,"is_sponsor":0},{"start_s":30.48,"end_s":36.399,"text":"and vision performance with a free trial of coopervision biofinity energised","speaker":null,"is_sponsor":1},{"start_s":34.48,"end_s":42.499,"text":"contact lenses made for today's digital lifestyle they're at the link below","speaker":null,"is_sponsor":1},{"start_s":45.44,"end_s":52.48,"text":"the first question you need to ask yourself is what do i need a vpn for we","speaker":null,"is_sponsor":0},{"start_s":50.48,"end_s":57.28,"text":"figure there are roughly four main uses for a vpn at least for now the first is","speaker":null,"is_sponsor":0},{"start_s":55.36,"end_s":61.92,"text":"to secure and encrypt your traffic against prying eyes like your internet","speaker":null,"is_sponsor":0},{"start_s":59.199,"end_s":66.32,"text":"service provider or bad actors on an unsecured wi-fi like say that guy with","speaker":null,"is_sponsor":0},{"start_s":64.239,"end_s":69.28,"text":"his hood up in your local coffee shop i'm not saying he's a bad guy i'm just","speaker":null,"is_sponsor":0},{"start_s":68.159,"end_s":73.68,"text":"saying you might want to use your credit card first netflix subscription right","speaker":null,"is_sponsor":0},{"start_s":71.76,"end_s":79.119,"text":"which brings us to reason number two accessing region locked content like bbc","speaker":null,"is_sponsor":0},{"start_s":76.479,"end_s":82.56,"text":"or netflix by masking your ip address and making it appear as though you are","speaker":null,"is_sponsor":0},{"start_s":80.88,"end_s":86.32,"text":"accessing it from a different country and well","speaker":null,"is_sponsor":0},{"start_s":84.56,"end_s":90.96,"text":"i'ma have to stop you right there because netflix specifically","speaker":null,"is_sponsor":0},{"start_s":88.64,"end_s":97.36,"text":"aggressively blocks any connection coming from a server vpn","speaker":null,"is_sponsor":0},{"start_s":94.24,"end_s":100.24,"text":"or data center related ip address so","speaker":null,"is_sponsor":0},{"start_s":97.36,"end_s":105.439,"text":"your diy vpn isn't going to work for this unless of course a us-based friend","speaker":null,"is_sponsor":0},{"start_s":103.36,"end_s":109.6,"text":"agrees to host a vpn for you at their house giving you access to their network","speaker":null,"is_sponsor":0},{"start_s":108.159,"end_s":114.399,"text":"which happens to be use case number three using a vpn to access a remote","speaker":null,"is_sponsor":0},{"start_s":112.64,"end_s":118.399,"text":"secure network let's say you've got a home server and you want to be able to","speaker":null,"is_sponsor":0},{"start_s":116.0,"end_s":123.439,"text":"access your files or whatever without opening up an ssh server to the entire","speaker":null,"is_sponsor":0},{"start_s":120.799,"end_s":127.36,"text":"internet using a vpn server inside your network's firewall lets you tunnel into","speaker":null,"is_sponsor":0},{"start_s":125.36,"end_s":131.039,"text":"your network remotely via an encrypted connection giving you access to all of","speaker":null,"is_sponsor":0},{"start_s":129.36,"end_s":135.44,"text":"the devices on your network as if you were sitting right next to them from","speaker":null,"is_sponsor":0},{"start_s":133.2,"end_s":139.76,"text":"anywhere so if you fall under any of the first three feel free to skip ahead to","speaker":null,"is_sponsor":0},{"start_s":137.76,"end_s":144.08,"text":"the tutorial portion of this video where we show you how you can set up a vpn","speaker":null,"is_sponsor":0},{"start_s":142.0,"end_s":149.52,"text":"server by yourself on cheap cloud hosting at a friends or at home for","speaker":null,"is_sponsor":0},{"start_s":146.56,"end_s":155.28,"text":"remote access number four is using a vpn to mask your ip for torrenting totally","speaker":null,"is_sponsor":0},{"start_s":153.12,"end_s":159.68,"text":"legal stuff like like Linux iso's this values purposes","speaker":null,"is_sponsor":0},{"start_s":160.8,"end_s":167.68,"text":"real talk though many avid torrenters use vpns to avoid dmca notices and","speaker":null,"is_sponsor":0},{"start_s":165.76,"end_s":172.48,"text":"potential service throttling that's why the data encryption that a vpn provides","speaker":null,"is_sponsor":0},{"start_s":170.239,"end_s":176.64,"text":"is so important for these use cases if your isp knows what your traffic is they","speaker":null,"is_sponsor":0},{"start_s":175.12,"end_s":180.319,"text":"can easily come after you for downloading and sharing copyrighted","speaker":null,"is_sponsor":0},{"start_s":178.4,"end_s":186.0,"text":"content should have worn a stealthy hoodie from lttstore.com bud but","speaker":null,"is_sponsor":0},{"start_s":182.879,"end_s":187.92,"text":"seriously unfortunately for you diy vpn","speaker":null,"is_sponsor":1},{"start_s":186.0,"end_s":192.72,"text":"folks out there if you're trying to run your vpn off of a rented server from a","speaker":null,"is_sponsor":0},{"start_s":190.4,"end_s":196.48,"text":"large hosting provider any abuse reports from your totally legal torrents will","speaker":null,"is_sponsor":0},{"start_s":194.48,"end_s":201.519,"text":"simply be forwarded along to you if the account is in your name now you could","speaker":null,"is_sponsor":0},{"start_s":198.879,"end_s":206.64,"text":"get around the in your name bit by using fake information but we obviously can't","speaker":null,"is_sponsor":0},{"start_s":204.239,"end_s":210.64,"text":"endorse fraud and that doesn't help anyway if your provider just throttles","speaker":null,"is_sponsor":0},{"start_s":208.48,"end_s":215.44,"text":"your connection or suspends your account for accessing pirated content excuse me","speaker":null,"is_sponsor":0},{"start_s":212.959,"end_s":220.08,"text":"Linux isos so the only way to combat this is to set up your vpn on a virtual","speaker":null,"is_sponsor":0},{"start_s":218.48,"end_s":225.36,"text":"machine from a company that's in a country that doesn't abide by the dmca","speaker":null,"is_sponsor":0},{"start_s":223.12,"end_s":228.799,"text":"that way any takedowns they receive will just be routed to the trash now we're","speaker":null,"is_sponsor":0},{"start_s":227.36,"end_s":234.08,"text":"not going to mention any specific providers but if you google dmca ignored","speaker":null,"is_sponsor":0},{"start_s":231.84,"end_s":237.439,"text":"countries i'm sure that you can find one that suits your needs once you've","speaker":null,"is_sponsor":0},{"start_s":235.599,"end_s":242.08,"text":"selected a provider that works for your use case we can move on to selecting a","speaker":null,"is_sponsor":0},{"start_s":239.68,"end_s":245.92,"text":"vps tier at a bare minimum you're going to want at least one core","speaker":null,"is_sponsor":0},{"start_s":243.92,"end_s":249.519,"text":"half a Gigabyte of RAM and enough bandwidth for your application for our","speaker":null,"is_sponsor":0},{"start_s":248.08,"end_s":254.4,"text":"example we're going to be using the lowest tier ipv4 compatible plan from a","speaker":null,"is_sponsor":0},{"start_s":252.159,"end_s":257.359,"text":"cloud hosting company called vulture at just three dollars and fifty cents a","speaker":null,"is_sponsor":0},{"start_s":255.84,"end_s":261.759,"text":"month it's quite competitive with existing public vpn providers if all","speaker":null,"is_sponsor":0},{"start_s":259.919,"end_s":265.36,"text":"you're looking to do is hide your casual web browsing from your isp and wi-fi","speaker":null,"is_sponsor":0},{"start_s":264.24,"end_s":270.88,"text":"snoops tutorial time then if you intend to follow along we've got a step-by-step","speaker":null,"is_sponsor":0},{"start_s":268.88,"end_s":274.479,"text":"text version of this at the ltd forum which is linked in the video description","speaker":null,"is_sponsor":0},{"start_s":272.479,"end_s":278.24,"text":"including commands that you can directly copy paste into your terminal for the","speaker":null,"is_sponsor":0},{"start_s":276.24,"end_s":282.72,"text":"video portion we're going to assume that you've already booted up your centos vps","speaker":null,"is_sponsor":0},{"start_s":280.479,"end_s":287.52,"text":"as per the tutorial set up the firewall and that you are ssh in ready to go next","speaker":null,"is_sponsor":0},{"start_s":285.44,"end_s":291.12,"text":"thing we need to do is install vpn server software there are lots of","speaker":null,"is_sponsor":0},{"start_s":289.44,"end_s":295.44,"text":"options here but one of the easiest that we found is an open source project","speaker":null,"is_sponsor":0},{"start_s":293.04,"end_s":299.44,"text":"called pre-tunnel they've nicely laid out the exact commands that you'll need","speaker":null,"is_sponsor":0},{"start_s":297.199,"end_s":304.08,"text":"to get their vpn software installed and working so copy over and run each","speaker":null,"is_sponsor":0},{"start_s":302.08,"end_s":308.8,"text":"command individually to add the required repositories and their gpg keys these","speaker":null,"is_sponsor":0},{"start_s":307.12,"end_s":313.12,"text":"ensure that the software that we receive has not been tampered with","speaker":null,"is_sponsor":0},{"start_s":310.4,"end_s":316.8,"text":"then install pre-tunnel and mongodb start them and set them to run when your","speaker":null,"is_sponsor":0},{"start_s":315.199,"end_s":320.0,"text":"vps boots at this point you should be able to","speaker":null,"is_sponsor":0},{"start_s":318.4,"end_s":326.24,"text":"access your pre-tunnel web interface remotely by entering first https colon","speaker":null,"is_sponsor":0},{"start_s":323.52,"end_s":329.919,"text":"slash then the ip of your vm if you cannot access it you likely","speaker":null,"is_sponsor":0},{"start_s":328.16,"end_s":333.52,"text":"didn't configure your vps firewall correctly so make sure you double check","speaker":null,"is_sponsor":0},{"start_s":331.759,"end_s":337.6,"text":"that once you've successfully accessed the panel use the supplied command to","speaker":null,"is_sponsor":0},{"start_s":335.6,"end_s":341.199,"text":"get the setup key click enter and then use the other command to get the default","speaker":null,"is_sponsor":0},{"start_s":339.6,"end_s":345.12,"text":"user and password log in and you'll be prompted to do some","speaker":null,"is_sponsor":0},{"start_s":342.88,"end_s":349.12,"text":"initial setup we recommend changing the default username to make it harder to","speaker":null,"is_sponsor":0},{"start_s":346.8,"end_s":353.12,"text":"bruteforce and you can also specify a custom domain here if you don't fancy","speaker":null,"is_sponsor":0},{"start_s":351.039,"end_s":357.44,"text":"typing in the ip all the time next create an organization this is","speaker":null,"is_sponsor":0},{"start_s":355.52,"end_s":360.24,"text":"basically just a user group and helps keep things","speaker":null,"is_sponsor":0},{"start_s":358.56,"end_s":365.52,"text":"well organized following that create a user while being","speaker":null,"is_sponsor":0},{"start_s":362.479,"end_s":367.36,"text":"sure to specify a secure pin","speaker":null,"is_sponsor":0},{"start_s":365.52,"end_s":370.96,"text":"with your user and your org setup head over to the server page and create your","speaker":null,"is_sponsor":0},{"start_s":369.12,"end_s":374.479,"text":"vpn server you're going to want to leave most of the settings here on their","speaker":null,"is_sponsor":0},{"start_s":372.16,"end_s":378.72,"text":"defaults except for the port that you previously specified in the firewall and","speaker":null,"is_sponsor":0},{"start_s":376.96,"end_s":382.319,"text":"you might want to disable interclient communication and enable multiple device","speaker":null,"is_sponsor":0},{"start_s":380.88,"end_s":388.08,"text":"support after linking your organization to the server you can go back to the user page","speaker":null,"is_sponsor":0},{"start_s":386.08,"end_s":394.16,"text":"and download the pre-tunnel client straight off of the panel along with","speaker":null,"is_sponsor":0},{"start_s":389.919,"end_s":396.56,"text":"your vpn profile now you connect and bam","speaker":null,"is_sponsor":0},{"start_s":394.16,"end_s":401.44,"text":"you've got a shiny new ip address with all of your data encrypted along the way","speaker":null,"is_sponsor":0},{"start_s":399.44,"end_s":405.6,"text":"even with our test server located in new york which is almost 3 000 miles away","speaker":null,"is_sponsor":0},{"start_s":403.6,"end_s":410.08,"text":"from our office our latency was obviously worse but we were still able","speaker":null,"is_sponsor":0},{"start_s":407.52,"end_s":413.919,"text":"to get speeds of more than 150 megabits at just three dollars and fifty cents a","speaker":null,"is_sponsor":0},{"start_s":411.84,"end_s":419.12,"text":"month offering us a near line level experience it's perfect for shopping on","speaker":null,"is_sponsor":0},{"start_s":416.639,"end_s":424.24,"text":"public wi-fi or watching online content without interruptions and without anyone","speaker":null,"is_sponsor":0},{"start_s":421.68,"end_s":429.12,"text":"snooping on what you're doing except maybe advertisers but if you","speaker":null,"is_sponsor":0},{"start_s":426.16,"end_s":433.28,"text":"watch our other video on pi hole an open source network wide ad blocker you can","speaker":null,"is_sponsor":0},{"start_s":431.36,"end_s":436.8,"text":"actually fix that problem too maybe go check that one out right now speaking of","speaker":null,"is_sponsor":0},{"start_s":435.36,"end_s":440.24,"text":"checking things out check out our sponsor brilliant thank you brilliant","speaker":null,"is_sponsor":1},{"start_s":438.639,"end_s":444.8,"text":"for sponsoring today's video brilliant teaches you guys to solve puzzles and","speaker":null,"is_sponsor":1},{"start_s":442.479,"end_s":448.8,"text":"problems on their website and app and they've got","speaker":null,"is_sponsor":1},{"start_s":446.0,"end_s":453.12,"text":"tons of content over 60 interactive courses in math science and computer","speaker":null,"is_sponsor":1},{"start_s":451.199,"end_s":457.52,"text":"science makes it a great website to achieve your goals in stem their courses","speaker":null,"is_sponsor":1},{"start_s":455.199,"end_s":462.0,"text":"are designed to puzzle and surprise you adding a lot of fun to the learning","speaker":null,"is_sponsor":1},{"start_s":459.759,"end_s":466.639,"text":"process one course you guys might like is mathematic fundamentals is it","speaker":null,"is_sponsor":1},{"start_s":464.4,"end_s":469.68,"text":"possible to drag the number tiles so that every row and column adds up to the","speaker":null,"is_sponsor":1},{"start_s":468.08,"end_s":474.0,"text":"target sum beside it well you can find out by giving it a try","speaker":null,"is_sponsor":1},{"start_s":471.52,"end_s":477.44,"text":"today so go to brilliant.org Linus tech tips we're going to have that linked","speaker":null,"is_sponsor":1},{"start_s":475.36,"end_s":482.319,"text":"below we're the first 200 of you to click on the link are gonna get 20","speaker":null,"is_sponsor":1},{"start_s":480.0,"end_s":486.4,"text":"off go check it out guys so thanks for watching","speaker":null,"is_sponsor":1},{"start_s":484.16,"end_s":489.599,"text":"by the merch personally i i wear multiple layers of merch so you know why","speaker":null,"is_sponsor":0},{"start_s":488.24,"end_s":493.84,"text":"stop at just one hoodie when you can wear two it's cold in the studio right","speaker":null,"is_sponsor":0},{"start_s":491.44,"end_s":493.84,"text":"now","speaker":null,"is_sponsor":0}],"full_text":"which vpn provider can we trust at this point nordvpn failed to disclose their hack in a timely manner tunnelbear and then pia got acquired by mcafee and cape technologies respectively both companies with spotty histories with respect to user privacy i mean it's enough to raise the question can't you just roll a vpn made by the one person you can definitely trust online yourself the answer is yes you definitely can but whether or not you should treat your eyes to long-lasting comfort and vision performance with a free trial of coopervision biofinity energised contact lenses made for today's digital lifestyle they're at the link below the first question you need to ask yourself is what do i need a vpn for we figure there are roughly four main uses for a vpn at least for now the first is to secure and encrypt your traffic against prying eyes like your internet service provider or bad actors on an unsecured wi-fi like say that guy with his hood up in your local coffee shop i'm not saying he's a bad guy i'm just saying you might want to use your credit card first netflix subscription right which brings us to reason number two accessing region locked content like bbc or netflix by masking your ip address and making it appear as though you are accessing it from a different country and well i'ma have to stop you right there because netflix specifically aggressively blocks any connection coming from a server vpn or data center related ip address so your diy vpn isn't going to work for this unless of course a us-based friend agrees to host a vpn for you at their house giving you access to their network which happens to be use case number three using a vpn to access a remote secure network let's say you've got a home server and you want to be able to access your files or whatever without opening up an ssh server to the entire internet using a vpn server inside your network's firewall lets you tunnel into your network remotely via an encrypted connection giving you access to all of the devices on your network as if you were sitting right next to them from anywhere so if you fall under any of the first three feel free to skip ahead to the tutorial portion of this video where we show you how you can set up a vpn server by yourself on cheap cloud hosting at a friends or at home for remote access number four is using a vpn to mask your ip for torrenting totally legal stuff like like Linux iso's this values purposes real talk though many avid torrenters use vpns to avoid dmca notices and potential service throttling that's why the data encryption that a vpn provides is so important for these use cases if your isp knows what your traffic is they can easily come after you for downloading and sharing copyrighted content should have worn a stealthy hoodie from lttstore.com bud but seriously unfortunately for you diy vpn folks out there if you're trying to run your vpn off of a rented server from a large hosting provider any abuse reports from your totally legal torrents will simply be forwarded along to you if the account is in your name now you could get around the in your name bit by using fake information but we obviously can't endorse fraud and that doesn't help anyway if your provider just throttles your connection or suspends your account for accessing pirated content excuse me Linux isos so the only way to combat this is to set up your vpn on a virtual machine from a company that's in a country that doesn't abide by the dmca that way any takedowns they receive will just be routed to the trash now we're not going to mention any specific providers but if you google dmca ignored countries i'm sure that you can find one that suits your needs once you've selected a provider that works for your use case we can move on to selecting a vps tier at a bare minimum you're going to want at least one core half a Gigabyte of RAM and enough bandwidth for your application for our example we're going to be using the lowest tier ipv4 compatible plan from a cloud hosting company called vulture at just three dollars and fifty cents a month it's quite competitive with existing public vpn providers if all you're looking to do is hide your casual web browsing from your isp and wi-fi snoops tutorial time then if you intend to follow along we've got a step-by-step text version of this at the ltd forum which is linked in the video description including commands that you can directly copy paste into your terminal for the video portion we're going to assume that you've already booted up your centos vps as per the tutorial set up the firewall and that you are ssh in ready to go next thing we need to do is install vpn server software there are lots of options here but one of the easiest that we found is an open source project called pre-tunnel they've nicely laid out the exact commands that you'll need to get their vpn software installed and working so copy over and run each command individually to add the required repositories and their gpg keys these ensure that the software that we receive has not been tampered with then install pre-tunnel and mongodb start them and set them to run when your vps boots at this point you should be able to access your pre-tunnel web interface remotely by entering first https colon slash then the ip of your vm if you cannot access it you likely didn't configure your vps firewall correctly so make sure you double check that once you've successfully accessed the panel use the supplied command to get the setup key click enter and then use the other command to get the default user and password log in and you'll be prompted to do some initial setup we recommend changing the default username to make it harder to bruteforce and you can also specify a custom domain here if you don't fancy typing in the ip all the time next create an organization this is basically just a user group and helps keep things well organized following that create a user while being sure to specify a secure pin with your user and your org setup head over to the server page and create your vpn server you're going to want to leave most of the settings here on their defaults except for the port that you previously specified in the firewall and you might want to disable interclient communication and enable multiple device support after linking your organization to the server you can go back to the user page and download the pre-tunnel client straight off of the panel along with your vpn profile now you connect and bam you've got a shiny new ip address with all of your data encrypted along the way even with our test server located in new york which is almost 3 000 miles away from our office our latency was obviously worse but we were still able to get speeds of more than 150 megabits at just three dollars and fifty cents a month offering us a near line level experience it's perfect for shopping on public wi-fi or watching online content without interruptions and without anyone snooping on what you're doing except maybe advertisers but if you watch our other video on pi hole an open source network wide ad blocker you can actually fix that problem too maybe go check that one out right now speaking of checking things out check out our sponsor brilliant thank you brilliant for sponsoring today's video brilliant teaches you guys to solve puzzles and problems on their website and app and they've got tons of content over 60 interactive courses in math science and computer science makes it a great website to achieve your goals in stem their courses are designed to puzzle and surprise you adding a lot of fun to the learning process one course you guys might like is mathematic fundamentals is it possible to drag the number tiles so that every row and column adds up to the target sum beside it well you can find out by giving it a try today so go to brilliant.org Linus tech tips we're going to have that linked below we're the first 200 of you to click on the link are gonna get 20 off go check it out guys so thanks for watching by the merch personally i i wear multiple layers of merch so you know why stop at just one hoodie when you can wear two it's cold in the studio right now"}