I’m in the process of setting up a home server some of which will be dedicated to NAS and storing my passwords. Naturally I want to keep that information safe. With that in mind, what’s the best open source VPN for a server? I was thinking OpenVPN but also considering WireGuard. What do you use?
Wireguard #1 easy to install and to configure. Performance wise best choice.
I’m using SoftEther, way simpler than OpenVPN
I actually am using several VPN technologies on top of two VMs, one Windows and one Ubuntu Linux. The Windows VM is running SoftEther (so I have EtherIP (SoftEther’s native high-speed protocol), as well as support of OpenVPN, IPSec/L2TP, and MS SSTP protocols and have integrated certificate and MFA security in to the solution. Additionally, I also have Tailscale and ZeroTier installed to provide additional mesh networking capabilities. On the Ubuntu VM, I have WireGuard server configured, as well as ZeroTier, and am considering also installing ShadowSocks. I found that having the flexibility of different VPNs at my disposal allows me to connect from my laptops or mobile devices to my home network regardless of the network that I may be on, especially if the network has deep packet inspection, which I am now testing Outline VPN to tunnel through Port 443 blocking/filtering with MITM inspection, which some networks (even guest networks) pose significant challenges to connecting to any of my VPNs in order to protect my privacy.
Used OpenVPN for the longest time and switched to Wireguard. Have a look at Algo for easy deployment if your router doesn’t support it.
I used OpenVPN for a few years and now wireguard for a few years. Wireguard is way more fault tolerant, resilliant, super fast connecting time and faster speeds, so I would vote that.
I got an email from Digital Ocean yesterday about getoutline.org
I didn’t have much time to look at it, so not sure if it is a new technology, or just an easy way to install and manage VPN servers/clients
EDIT: Deleted and moved to lemmy
+1 and if you use this GUI it’s a no brainer to choose WireGuard GitHub - WeeJeWel/wg-easy: The easiest way to run WireGuard VPN + Web-based Admin UI.
Thanks so much for this comment. Just got up and going in less than 5 minutes.
Would like to point out that pivpn is essentially a script that lets you install either a wireguard or OpenVPN server. I’ve set up both for various projects, and it handles all the heavy lifting of setup. Highly recommend!
I think Outline is pretty much Shadowsocks with a GUI and a few bells and whistles. It’s not as performant or elegant as WireGuard but the traffic is obfuscated (WG isn’t) which means it’s more likely to work on restrictive networks. In fact I think it was borne out of providing unfettered internet access to journalists under oppressive regimes or something.
The mesh feature of tinc is what really makes it stand out above all others. Trivial to set up real fault tollerant networks with it.
+10000 to Zerotier, especially self-hosted with ZTNET UI
Is there any way to setup/configure it without GUI?
holy shit I didn’t know about this and I just installed and it just… worked. first try. I even got the web UI behind a reverse proxy while still having the wireguard service direct to IP… amazing
Thanks for this dev01d
im trying this out but i need to use port 443 to bypass restricted wifi. i tried changing some stuff in the shadow box configs but it doesnt connect to the manager. any help is appreceiated