Openpyn Nordvpn Versions Save

New release in 3 years. This is a major release that includes many improvements and bugfixes including fix for new API rate limiting set by Nordvpn, causing JSONDecodeErrors.

Some of the changes are:

New feature: Allow Openpyn to invoke sudo to run the specified command

Added MacOS manual DNS patch and revert to prevent DNS leak

New option --allow-locally To be used with "-f" to allow input traffic on all ports from locally connected devices / INTERNAL IP SUBNET

[New option --add-route to Add route to default-gateway; Needed to continue serving any service including SSH. Required on VPSs. To ensure it doesn't leak traffic use it with -f and --allow]

New options --allow-config and --allow-config-json. These options load a JSON config object that gets converted into a series of ip table rules that get loaded before the firewall to exclude certain ports.

[Logs are now stored in ~/.local/share/openpyn/logs/ instead of /var/log/openpyn/]

New option --status

Send pings in parrallel

Removed --ping option

Added new Netflix servers

Fixed ping issue on systems with LC_NUMERIC other den en_*

Bugfix, kill_management_client() should be called before kill_openpyn

Bugfix: Revert /etc/resolv.conf only if skip_dns_patch is false

Improvement: invocations of openpyn --kill will now exit with status code 0

Add more verbose logging for JSON decode errors

Bugfix: revert /etc/resolv.conf back to the original if it was modified in a finally block (only for connect code invocations), ran tests on macOS

Changes for ASUSWRT-Merlin

Features (ASUSWRT-Merlin)

Feature: NVRAM connect and kill support for Asuswrt-merlin

Note: Previously only write support was enabled meaning that a user would have to go to the web interface of the router to toggle an off/on switch, now this process is fully automated, and kill also works as a bonus. So now openpyn has full native Asuswrt-merlin support!

Bugfixes (ASUSWRT-Merlin)

Bugfix (nvram) and optimisations

Bugfixes and new features for NVRAM users, external app users

Bugfix: nvram write would fail if certificates folder does not exist yet (e.g., when user has never before used OpenVPN client in web interface)

Bugfix: ASUSWRT-Merlin 384.18 is now supported

Bugfix: ASUSWRT-Merlin latest is now supported

Bugfix: Improve check VPN client status for Asuswrt-merlin

Bugfix: Suppress output for VPN service connect/disconnect for Asuswrt-merlin

Bugfix: Suppress output for VPN service connect/disconnect for Asuswrt-merlin

New Features , Improvements in 2.2.0

• Using newer ovpn files to bypass ISP blocks to nordvpn.com #79
• Find servers optimized for netflix with "--netflix" option #84
• Super speed pings: now ping speeds are x8 times faster #85
• Improved systemd Service File. #80

Bug Fixes in 2.2.0

• Handle err when daily Gmaps request limit reached #64
• --tor flag fixed #83
• Randomly wait between requests to G maps api #64 #86
• Bug fixes in openpyn.service file, added After=network-online.target, and sleep for 10 secs, auto detect '-f' and properly kill the service.

2.1.1 Bug Fix Release:

fixed bug that stopped failover to next server. #74

New Features , Improvements in 2.1.0

• Now the --init installs it as a systemd service as well. And we get the benefit of dynamically changing that config file if you run openpyn with -d switch. so if you feel like you want to change the country and some options in your openpyn.service you run.
• 'sudo openpyn au -p 5 -d' for example, will update the systemd service file, reload systemd, and also run openpyn (systemctl start openpyn). To check VPN status run "systemctl status openpyn" #62
• On Arch install with yaourt. thanks to https://github.com/Ubermensch85 #58
• Should work on MacOS as well! #71
• UDP-1194 is the new default port for faster speeds. You can use TCP-443 instead with the "--tcp" switch.

Bug Fixes in 2.1.0

• sleep for 0.1 second b/t every request to google's API #64 #68
• Better output, error handling #66
• if vpn config not found suggest to 'openpyn --update' #57

A lot has changed since the last release on github.

New Features , Improvements and Bug Fixes

• "-a" or "--area" lists and connects to servers in a city, area, state.
• Removed static country code mappings, fetching names dynamically.
• Full country names are now supported.
• Desktop notifications.
• --init added to store credentials and download vpn configs.
• Allowing custom ports on the local network (SSH,HTTP etc) #38 #39
• Implemented --skip-dns-patch, when using with "-f" don't block DNS traffic
• Fixed auto disconnect at times, due to SIGTERM[soft,auth-failure] #36
• Fixed daemon mode with "-f".#42 properly iterate through servers
• Colorized output using colorama
• Handle exception if "Ctr + C" while pinging
• Python 3.4 compatibility, unlimited retries, removed -T
• OS packages (deb, rpm)
• more fixes and improvements

Improvements

• #18 Fully adopting api.nordvpn.com which updates every minute and dropping https://nordvpn.com/wp-admin/admin-ajax.php?group=Standard+VPN
  +servers&country=" + country_code + "&action=getGroupRows
• #16 Don't print "root access needed for * " when "sudo" credentials are cached.
• #17 Better handling of --daemon messages.

New Features:

• Now using frequently updated api.nordvpn.com API.
• List and connect to servers with "Peer To Peer" --p2p, "Dedicated IP" --dedicated, "Tor Over VPN" --tor, "Double VPN" --double, "Anti DDos" --anti-ddos support.
• Store credentials from user input (in install.sh). If "creds" file exists use that instead.

Improvements:

• iptables rule: allow internal ip range ESTABLISHED,RELATED traffic (so one can talk to internal servers when using strict firewall rules "-f").
• Better exception handling, detect OS, clean exit without trace.
• Sane command-line options following the POSIX guidelines.
• Merged old "-d | --display" and "-ls" into one "-l | --list".
• Display message when root access needed and what for.

Bug Fix:

• Proper exit if non root trying --daemon
• Handle exception when no servers under search criteria

New Features:

• "-f" forces Firewall Rules to block leakage, if tunnel breaks (Experimental!) . uses iptables to block all traffic to other interfaces except internal traffic and traffic to the specific ip address of the openvpn server you are trying to connect to.

• install script with "install.sh".

• "-kf" clears iptables rules and kills any openvpn processes.

• "-d" now displays server that are not (yet) shown on the nordVPN's site yet but their openvpn files exist.

Improvements:

• now uses "--redirect-gateway" switch for openvpn to force traffic through the tunnel.
• "-b" () now utilises openvpn's "----daemon" switch
• A description added to "-h"
• Shows help when no other argument is given.
• Improved instructions in README.md

Now connect to any servers residing in any country! A json file has been dynamically generated to get all country name mappings. '-ls' to list all countries and their country codes. '-d' shows openvpn (udp-tcp) support

bugfix: Removed Static osIsDebianBased = False

The major features have been implemented. Proper dns leak patching for Debian based OS's (the ones that use "/sbin/resolvconf"). Manual patching (by editing /etc/resolv.conf) for others. Bug Fixes and Improvements.