Serious ( Internet threatening ) problem, need help.

@Shadowfied .
I'm a fecking Hutterite, explained how it works before, not about to do it again. The Big shots who run the place decided to clamp down on all Internet on the colony, banning Social media, everything Gaming related, Pornography, you name it.
I'm just a low level grunt here and don't get a say in anything. there you go, satisfied ? as for buying my own Mobile data or internet, it's way too expensive.
To Clarify, there's a guy coming next weak who the Big shots hired to install the filter, apparently, he was bragging that you'd need a "$2000 VPN to get through that thing" that's all I know.

I'm sorry, it wasn't my intention for it to come off as rude (except maybe my second comment, BUT THATS CAUSE THE TITLE HAD ME WORRIED ;_; )
That sucks though and I'm sorry to hear it.

don't worry bout it, I get misunderstanding about it all the time. nothin I can do bout it.

It's people like me being ignorant, I just assumed you were talking about an ISP decision.

Decided to go against the grain huh.

Big boy internet blocking workarounds then. I assume you have no 3g and have to use a main connection controlled by those with the desire to block. If you live close enough to a town to visit some library, coffee shops... some kind of public wifi then. If you have some money to play with there are also longer distance transmission methods, ones people in the country often use to get better internet.
You might also want to see what is blocked. Most forums are text and thus very low bandwidth if you want them to be (a month of text is probably less than a hour of youtube at decent res) so if they allow you to watch funny videos on their connection and you can stuff your "illicit" but ultimately low bandwidth uses over a 3g connection you pay for then so much the better.

VPN is mostly VPN in my world, a "$2000" one means very little. I would not be surprised if one charging that much has some really juicy workarounds for common blocks but said workarounds are not hard to do (DNS tunnelling for one). More expensive just means more support, more bandwidth, more users on the account and possibly a few more options that will do not a lot.

There are three types of check/block

1) Blacklisting.
2) Whitelisting.
3) Greylisting/analysis/packet inspection.

Blacklisting has a list of sites/services/ports that it will block. This is one of those "you have to block every single thing" situations otherwise someone creates something new.
Whitelisting has a list of sites/services/ports that it will allow. This is gets very annoying as legitimate services may get caught in the crossfire and new sites then have to be vetted and whatnot. That said it might be viable for those going against you in this situation.
Packet analysis relies on being able to read the contents of the transmission. If you stuff it over SSL then you only see that it has been over SSL. Some will slow SSL traffic -- plain text emails don't need much bandwidth after all.

Do you have a friend on the outside wiling to allow you to share their internet? If you can stick a raspberry pi, or better yet a laptop you can VNC/teamviewer/whatever into and browse via that then it is a whole different game.

I suggest also standard protocols for hostile environments. Don't share with your friends -- if they get caught then you might get dropped in it despite you doing everything right your end. Equally if you want to manufacture some plausible deniability on your devices then that is not a bad thing.

This also is skipping discussion of... more blackhat methods. One of my favourite parts of Ghost in the Wires was his breaking of federal law enforcement radio encryption. Was it by some high tech crazy maths? No. The crypto was new so every time they tried to transmit on it he would block the channel. "stupid crypto is not working" so they went plain text and he could listen in.
Something similar here would be "thing gets installed, shown to pastor/council, guy walks off, your DDOS starts, guy comes back, your DDOS stops, guy leaves, DDOS..., and as your pastor/council are presumably not down with tech they consider it unreliable and get it uninstalled and consider something else. If you are really good you do that which they most fear -- if their new system just is slow and does not work that is one thing, people unexpectedly get porn shoved down their throats and watch the fireworks go off.
Are some more righteous than others? I have been called in before because the bossman wants to be able to browse facebook all day but the plebs on the floor should not be able to. If someone else has some special pass then find out how (might be a password, I have seen mac addresses used before) and use that instead.
Depending upon the nature of the router you might be able to set up your own parallel network with a $2 router you found in a junk shop. On the other hand you don't want to be caught breaking into a comms cupboard, or if they are good then breaking back into the comms cupboard because they unplugged it and are now waiting for the person to come repair it. To quote Burn Notice

All surveillance devices, though, share a weakness, they're machines. When machines break, somebody has to fix them. More spies get caught changing batteries and fixing wires than any other single activity.

Click to expand...

you nailed it.
okay, the guy who came up with he idea of the filter is actually pretty tech savy, but not too much, currently the choices he has are either a Black list or Whitelist. i'm gently pushing him to put in a blacklist, because I can use certain apps to slip under the radar, Mangarock and so on, stuff that uses it's own resources instead of a browser. but other than that, I can't do shit it this thing hits.
also, the physical location of the router is in one of the head honchos office, which is locked whenever he steps out. even if it weren't there are already too many eyes on me.
Sharing with friends ? hah, those pricks set up their own network on said router and were using it to leach Wi-Fi and got caught, which is one of the big reasons the filter is coming in.

whitelists will be a PITA unless they only want you to access a limited number of sites e.g. an intranet.

For anything more than this, a blacklist will be the only practical option while still being a PITA for them unless they're using something like a publicly available DNS (e.g. openDNS).

How about you use TOR browser ? And btw, long time no see nimbus

Move away from those freaks.

Pacheko17 he don't want
its his family he can't get away oh mah god :''OoooOOoOoooooOOOOpintoOoo

LOL I'm behind 7 proxies

In the remaining time before it happens, launch a GoFundMe page, and use then money earned to move the fuck out of there

Aint happening, I have a VERY comfortable life here, and i'm not about to leave over a little internet.

@jorji109 same to you, buddy.

use open vpn no other vpns worked on public wifi for me except open vpn

use open vpn no other vpns worked on public wifi for me except open vpn

@SoslanVanWieren openvpn isn't a vpn, it's a vpn protocol that others use to work

Nay, OpenVPN is just a software. OpenVPN is built with security in mind, enabling usage of SSL tunnels to create the VPN.
Most common VPN is PPTP. A lot of companies use IPSec between their different branches, that is mostly between routers and/or firewalls.

So there is really no "vpn protocol" persay, VPN is just a fancy name for a private connection to a different endpoint.
But if you wanna be best secured using a VPN? OpenVPN is the best one so far.

EDIT: Most call OpenVPN a protocol, even if it's a middle ground.

Buy a VPS, install OpenVPN Access Server and set it to run on port 443.

Port 443 is used for secure https communication, so is more likely to be allowed on the network your on.

You can also simply run an SSH server on port 443, open up a dynamic port forward once you connect via SSH and use this as a SOCKS proxy for your web browser.

Any site you browse in that browser will go though your ssh tunnel, avoiding any content filters on your network.

Of course if it's actively monitored it would be easy for someone to workout what your doing, even if they can't see the sites your browsing. However if it's not then your good to go. I'd only do that if your browsing on a personal device and not a school / company computer.