Stop relying on VPNs - Just use your computer with i2p

karce@wizanons.dev to Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ@lemmy.dbzer0.com – 20 points –

After the Mullvad fiasco I decided to stop using VPNs all together, since port forwarding is always going to be a problem on all of them, if you read the reasons why Mullvad had to shut down that service.

There is a better way using i2p which conceals your IP and makes it impossible for anyone to know what or if you're downloading at all! No DMCA notices, no problem.

I wrote this small guide to another comment and figured I'd share it in its own post since I'm seeing so many people ask for VPN recommendations.

So there are 2 main implementations of i2p. First is the main Dev’s Java client here https://geti2p.net/en/download

The other is i2pd, which is C++.

I use the Java one personally but both would work. Someone posted back on reddit a guide on /r/i2p for qbittorrent, which is what I use now for this too. The guide was shared as a public torrent you can download with this info hash: 3f1d51095f9b116739172c1bced149acf2b10692

Use that hash with any of the various public trackers and you should be able to download that guide.

But if you just want a basic setup, that Java client comes with i2psnark, which is a Bittorrent client already setup.

The only other thing you want to do is go and search the biggest tracker for stuff, which is called PaTracker, Postman’s tracker. http://tracker2.postman.i2p, only accessible from i2p itself, which you’ll need to have setup and running first to view.

This tracker needs more seeders and uploaders in general, and by improving those things service for everyone is better. So the more the merrier.

Thanks! Feel free to ask any questions, there also might be other people who use i2p now for torrenting. I'm sure they'll help too.

63

I2p is not a substitution for a proxy. I2p is an end-to-end encryption Network and unless it's changed over the past couple of years it's incredibly slow for any multimedia transfer. Coupled on top of that you have to have the knowledge to be able to set up your full system to route all traffic through it. So using it as a a security step for most people is already out of the question. It's not like a VPN where you can just plug and play. Having your entire network communicate through l2p is going to make everything substantially slower.

You don't need to route all traffic, just the traffic from your bittorrent client.

Download speeds have improved significantly as there are more people on there seeding than ever.

i2p is significantly better than a proxy, you jump through multiple hosts/tunnels before reaching the service.

Also it isn't all network traffic at all, just services connecting through i2p like a web browser you have setup to use it.

Doesn't this still have the same vulnerability of the potential for a hostile takeover similar to tor? Also, is there any way to use i2p to bypass geoblocking? If not that's a major reason why I and many people use vpns.

So no, i2p won't interact with the clearnet at all. So it doesn't help with access to clearnet sites that are geoblocked. I never used VPNs for geoblocking specifically, just for torrenting, so this wasn't in my list of use cases.

It makes sense sticking with a VPN if you really need to access a site that is blocked in your country. Or you could use Tor for that, but Tor has its own issues.

Also I'm still not familiar enough with I2P to know if it's vulnerable to hostile takeover. It IS a completely different protocol from Tor though, so my guess would be it doesn't have that same issue.

I don't even use VPNs for torrenting lol. I use them only for either geoblocking or scrambling my IP address for practical clearnet purposes such as signing up multiple accounts. Torrenting is not prosecuted or even mentioned in my country. The only issue I could have is my ISP not liking my download volume and throttling for a short period of time to counteract my "abuse" of the network.

hostile takeover similar to tor

yes but the NSA/FBI are not going after you for seeding family guy, they're there to get the CSAM and drugs

But the multiple jumps make it very slow.

There's a reason we want port forwarding for near direct connections for torrenting.

That's not why port forwarding is important. Port forwarding is needed so that fresh peers can communicate with you and join the swarm. That act has the side-effect of speeding up transfers by allowing more people into the swarm spreading the transfer across more potential seeds/peers

Can you only seed to people on i2p?

You can cross-seed with people over clearnet using qBittorrent or BiglyBT, but that also exposes your IP to clearnet people. So you could get DMCA notices if it is copywrited content.

Otherwise typically no you will only be downloading and seeding with people on I2P if you haven't chosen to cross-seed.

Then this is no replacement for VPN..

Thanks.

It's worked well enough for me. Keep in mind this is just for public trackers. Private trackers shouldn't be used with a VPN anyway and you don't need to use i2p for them.

but that also exposes your IP to clearnet people. So you could get DMCA notices if it is copywrited content.

So, for pretty much everyone this is the same as torrenting without a VPN at all.

See this comment for seeding to both clearnet and i2p. I2PSnark (the builtin torrent client) only interacts with I2P, but biglybt can do bridge.

And what do I gain with this over having my torrent client bound to a wireguard interface running through a commercial VPN provider?

Can you go a bit more into detail what it actually is, what are its advantages and disadvantages and how it works? I find it weird that people are still paying for VPNs if the superior solution that consists of just running this program existed this whole time, there's gotta be a catch that you're not mentioning. What or who exactly guarantees anonymity and safety if using this tool?

I did explain in another comment some general information about I2P. The one where I mention how it is a darknet but is much different than Tor.

The reason many more people don't use it yet is because it is hard to setup. That's pretty much it. Similar to lemmy or other things that exist it is just difficult to get people using it unless it is significantly easier to use.

However, recently things have gotten easier. The dev for i2p has included an easy windows installer for i2p that should make this much better for most users. So some development has happened there.

Also just recently qBittorrent included support for I2P in their latest release. Before that, only 2 Bittorrent clients existed. Now we're up to 3.

The biggest advantage is that you don't need to spend money anymore for a VPN. Or any money for a seedbox either if you have a home computer you can just leave up to seed for you.

The biggest disadvantage is the hard setup and (so far) lack of torrent availability. More stuff is getting added all the time but we need more scene groups adding their releases to i2p (cross-seeding).

Doesn't this make every user the equivalent of a Tor exit node? Meaning you'll have possibly dodgy traffic appearing to come from your internet service?

No. I2P works differently than Tor. There are no exit nodes, because there are no exits. I2P is separate from all clearnet traffic. For example, you cannot browse reddit.com from within i2p, like you can with tor.

Gotcha. So its basically a large, decentralized overlay network...ie you can't use it to "privately" access clearnet content as you can with a VPN. Sounds like the headline is misleading.

That's exactly correct, yes. A VPN is still useful for accessing clearnet websites that you want to conceal from your ISP. I'm arguing that you don't need to go to clearnet websites for most of the stuff you download from public trackers. private trackers are always going to have great quality releases, but I could see them moving over to i2p at some point as well. Though DMCA shouldn't be much of a concern for private trackers anyway.

I'm looking up I2P vs VPN and people are saying that I2P cannot replace VPN but I fail to understand why. Can I get some more insight to that?

I think the only use-case maybe not covered is finding torrents that aren't uploaded to the I2P tracker yet. They need to be cross-seeded from people who originally uploaded them or from people downloading them from the clearnet to be available.

An example of this is anime. There is significantly less anime available on i2p currently than there are on sites like nyaa.si. People can cross-seed these torrents to make them available on i2p. I do that, for instance. But other than that I can't think of any other use case that isn't covered.

I2p is a closed network where everyone participates and using cryptography packets are encrypted so so only the destination can reason them. All packets are sent through short lived tunnels which are connections of various nodes in the network that change at every so often.

You traffic never hits the main internet. Its a full darknet with a torrent network system , email, websites, private encrypted messaging and more built on top of it.

So they are all encrypted. Nobody knows the IP of anyone else

I'm skeptical of changing what works. Haven't had any issues with the VPN I use. I'll keep this in mind for sure nonetheless.

Honestly that is fine. Just consider this to be one of the times you hear about I2P. I also don't typically start paying much attention to something unless I've heard it like 3 or more times.

Huh, I've been using a VPN for torrent without setting up any kind of port forwarding! Can someone explain why you might want to do this?

Port forwarding, which Mullvad was allowing until recently, allows other people to connect to your bittorrent client that is downloading/seeding torrents. This makes it easier for you to find others who can either help you download, or seed for other users in the network.

Basically it improves download speeds and allows you to easily upload to everyone else.

I see, thanks for clarifying! Even without port-forwarding, I'm able to make some connections. Is there just a more limited set of destination IPs I'm able to connect to? What dictates whether or not I'm able to connect?

Yes! You still get to make outgoing connections to anybody who can accept incoming connections.

Port forwarding makes it so you can accept incoming connections.

Oh also for your last question: Firewalls and NAT. NAT stands for network address translation. NAT is what these services use for getting people to 'share' ip addresses in a pool and then map ports to each person/host. https://en.wikipedia.org/wiki/Network_address_translation

Interesting. So when I'm connecting to peers for downloading, these connections can be initiated in both ways? And since I'm not currently port-forwarding, this means I can only actively find peers, rather than passively accepting incoming connections?

I just changed to AirVPN.
Some alternatives I considered: using i2p (but was unaware of the tracker you mentioned) and exploring a fancy VPN called Orchid because it seemed fancy, but gave up on the last two.
I'll try again i2p to share my Ubuntu ISO.

I'll admit I2P is harder to setup than a VPN, but I just kept getting frustrated by having to pay and expose data to various VPN services. I can share tips about running I2P in Linux too.

Please do!

So it looks like setup on ubuntu should be pretty straightforward. Follow these steps to install the java client as a package: https://geti2p.net/en/download/debian

Then under their Post-install work on the bottom of that page follow this:

as a service that automatically runs when your system boots, even before logging in. The service can be enabled with "dpkg-reconfigure i2p" as root or using sudo. This is the recommended means of operation.

That will cause i2p to automatically run at startup. You can use the other methods there if you don't want that behavior. Lastly, you'll need to configure a browser to use i2p. https://geti2p.net/en/about/browser-config

Firefox is a good one to use for it but you can use librewolf or another one.

And I think that's it as far as setup for ubuntu. Let me know if you have more questions : )

I'll read up on this. It's new for me and thr first time hearing of it, but we should always consider working alternatives

Fuck, this is how I find out Mullvad is dropping support for port forwarding.

I already have a protonmail account, guess I'll get the VPN too now. My entire setup relies on using wireguard on the firewall level, so another solution like i2p won't work

That's the moment when lemmy became more relavant than reddit to me.

I have never used i2p but isn't it pretty slow? I only have experience with Tor and it's not recommended to torrent through Tor. I did listen to the interviews of both Tor and i2p on a Privacy podcast but it was a while back

It's one of those things that gets faster the longer I2P software is running. As I understand it, it takes time to building link betoween yourself and other members of the network in a safe and secure way, but once they're built up that extends your reach and speed

What Mullvad fiasco? I'm still using them :|

It's not really a fiasco at all. OP seems to be blowing it way out of proportion. For the vast majority of users it's not a big deal at all. They are disallowing port forwarding due to how many letters/threats they've gotten from their datacenters and law enforcement.

Mullvad stopped port forwarding due to being harassed by law enforcement agencies.

Mullvad fiasco? What did I miss?

Mullvad disabled port forwarding due to bad people abusing it. It would happen to anyone honestly.

If thats what the poster is calling a "fiasco", thats a bit much. I was curious what Port forwarding was when that announcement first happened and Mullvad themselves said if you didn't know what Port forwarding was before their announcement, nothing was changing for you in regards to their services. This is only a fiasco (to my understanding) if you're someone who file-shares/torrent. Not saying the poster is spreading bad faith or whatever of course.

Lots of people were looking for new VPNs because of it and Mullvad was officially taken off the list of recommended VPNs (on /r/vpntorrenting) because of this change. I always seed a lot because I have unlimited data so this change forced me to stop using Mullvad.

Does this have any serious implications for the average VPN user? Like would any torrenting reveal your IP without port forwarding?

Nope. Disabling port forwarding protects Mullvad from legal liability with respect to illegal content being hosted through their service. Your IP wouldn't be revealed with or without port forwarding.

What mullvad fiasco??

I wouldn't call it a "fiasco", but they're disabling port-forwarding for everyone on July 1st. They say it's because people are hosting "unfavorable" content and it's getting their IPs banned. Their article

Interesting stuff, I had heard of i2p before, but mostly in connection with darknet and not yet with torrenting, but it‘s something I might play around with now that I know.

Yeh I had tried torrenting on Tor a LONG time ago but people made it clear to not do that on Tor for one reason or another. But on i2p, the devs made a torrent client directly into the software. It was one of their features and something they want people to use.