With the Cricket World Cup and Chinese New Year happening the week I was to travel to Auckland decent, reasonably priced hotels were at a premium and so I ended up at a hotel on Queen Street called the Park Regis. But don’t start thinking that you’ll be staying at anything that looks like the St Regis in New York – far, very far from it.
Park Regis, Auckland, New Zealand
I don’t normally stay at a Marriott hotel as I try to stay at an IHG or Accor hotel so I get my points (yep, I’m a bit shallow like that!) but this week due to all my normal hotels being full in Brisbane I decided to give the Marriott Brisbane a go having driven and walked past it many times.
The Marriott Brisbane is a relatively large hotel at the intersection of Queen and Ann Streets, though your taxi will take you to the back entrance on Howard St.
Brisbane Marriott Hotel, Brisbane, Australia
Continue reading “Brisbane Marriott Hotel, Brisbane, Australia”
We’ve all seen the depths to which governments across the world will go to get their grubby little hands on your private data. Often illegally!
The Prism surveillance program, XKeyscore & the recently mooted Australia metadata retention program are all cases in point. Yep, that’s Australia’s elected Attorney General there!
If you think that the spooks and federal, state & local police aren’t trawling through your information without a warrant (Canada, Romania, France, US) then quite frankly you are a moron and you shouldn’t be allowed to use the Internet.
Most decent routers allow you to establish Virtual Private Networks (VPNs) that encrypt your data and then send that data to somewhere else on the planet.
Without a VPN your data leaves your PC, goes through your router to your ISP and pops out in your own country and this is where your local spooks and cops are slurping up your data for analysis.
With a VPN the data that they slurp up is gibberish. It’s encrypted which makes it difficult (but not impossible mind you) for them to read.
This all depends on the capabilities of your router. There are 4 or so major VPN “standards” and you’ll need a router that supports one of more of them.
OpenVPN is an open source project that implements a quite robust VPN protocol and it is supported by pretty much every VPN provider on the planet. Quite easy to setup and keep running. Downside is that you normally need to install a special firmware (DD-WRT or Tomato) on your router to get this capability and not all routers support this special firmware.
IPSEC is an Internet standard for the encryption and authentication of the data packets on the Internet. There are slightly different variants depending on whether you’re doing site-to-site VPNs or setting up a teleworker to dial into your network.
A very secure protocol but can be a hassle to setup correctly due to the number of knobs that can be tweaked. Things like NAT can cause you much grief.
L2TP by itself does not give you encryption so is pretty much useless by itself for protecting your communications. But when L2TP is coupled with IPSEC you end up with a relatively good level of security for your Internet communications.
L2TP/IPSEC is a good trade off of simplicity and capability.
PPTP is NOT considered secure anymore. Do not use unless you absolutely have to and nothing too confidential is flowing through the VPN. Probably OK for torrenting.
In a word NO!
The technical capabilities of the VPN provider, the support experience and network speed all come into play when selecting a provider. You might also be concerned with how you can pay for your VPN – some providers allow you to pay with anonymous gift cards if you’re that paranoid.
I recently upgraded to a Draytek Vigor 2860 router. I’ve been quite impressed with it in the short time I’ve been using it. The 2860 supports dial-out VPNs, load balancing & failover VPNs, and policy based routing that allows you to select what data goes out via the VPN and what data go out direct to your ISP. You have have upto 32 VPNs configured.
During my travels I’ve seen that VPNs don’t all live up to their marketing hype. While all the providers below say on their webpage that they support “L2TP/IPSEC” your results can vary widely. For example, 2 of the providers below will quite happily establish an L2TP/IPSEC connection without the encryption turned on! Completely useless as a VPN to protect your identity and information.
| VPN Provider | Supports L2TP/IPSEC | Support Quality | Comments |
|---|---|---|---|
| Witopia | Yes, with AES encryption and SHA1 Authentication | I've only needed to use support once and it was fast and efficent | Downside is that technically you're not allowed to setup Witopia VPNs on routers. |
| NordVPN | Yes, with AES encryption and SHA1 Authentication | Worked straightaway - have had no reason to speak to support yet | Great so far - highly recommended |
| Private Internet Access | Yes, but NO ENCRYPTION | Poor and slow. Their L1 support staff are useless. They skim through the e-mail and then cut and paste an answer that doesn't help | Avoid at all costs |
| Proxy.sh | Yes, but NO ENCRYPTION | Poor and slow - a question that I placed 7 days ago still hasn't been answered or acknowledged. | Avoid at all costs |
| Kepard | Yes, with AES encryption and SHA1 Authentication | Worked straightaway - have had no reason to speak to support yet | Great so far - highly recommended |
| vpn.ac | Yes, with AES encryption and SHA1 Authentication | Worked straightaway - have had no reason to speak to support yet | Seems good so far |
Try your chosen VPN provider before you make a long term commitment to them. Some offer a couple of days for a dollar or 2 while others will need you to commit for a month at around $10.
Try to setup the VPN on your router. I can assure you that you’ll probably have problems in the first instance so hit up support early and often to you can gauge the type of response you’ll get ongoing.
From my tests I’d suggest VPN.AC and Kepard. Witopia would be up there if their T&Cs allowed you to host the VPN on your router.
In no way, shape or form would I suggest anyone use Private Internet Access or Proxy.sh if they needed a L2TP/IPSEC VPN on their router – life is too short to have to deal with incompetent help desks.
NordVPN can be veeeeeeeeeeeeeeeery slow at times.
During my last holiday trip to Hong Kong I did the usual day trip to Macau. When you arrive in Macau on the ferry from Hong Kong you’re presented with a myriad of free buses to whisk you away to one of the 33 casinos in Macau.
The random bus I picked this time had me heading out to The Venetian on the island of Taipa.
Madeira Portuguese Restaurant, The Venetian Macau, Taipa, Macau
Continue reading “Madeira Portuguese Restaurant, The Venetian Macau, Taipa, Macau”
For my first week day in Hong Kong I wanted to head out to one of the outlying islands, Lamma Island. It’s probably been 25 years since I’d gone on a day trip to Lamma Island with my parents while I was still in school.
Lamma Island is a short ferry ride from the Central Ferry Terminal and arrives at Yung Shue Wan pier on Lamma Island.
Once you’ve disembarked its a short walk along the waterfront to the township. Along this path are a number of restaurants with open air dining areas that overlook the bay – it’s a very scenic and tranquil place but I can imagine that the weekends would be absolutely hectic.
Sampan Seafood Restaurant, Lamma Island, Hong Kong
Continue reading “Sampan Seafood Restaurant, Lamma Island, Hong Kong”