I’ve tried setting up VPN tunnels and all that, they all require tons of configurations and certificates with passwords and all that and needing the VPN clients on my phone and pc or any device that i use to access.
I’m looking for a more simpler solution similar to logging into my ASUS router remotely, or logging into unifi.
Those other options are so much simpler and less of a headache.
are there any options like this that I could potentially use?
The whole point of the VPN is to expose the router interface safely.
Wireguard doesn’t require any certificates or passwords and should be pretty easy to get up and running with the QR code generator following this guide.
I don’t think there’s any option as simple as you want, which is a good thing because both of the things you listed are terribly unsafe.
You can try a zero tier solution like Tailscale.
Simpler than setting up a dedicated wireguard tunnel with pre shared keys and safer than having your Web Ui exposed to the Internet.
I use Tailscale to keep my remote access very simple
Sounds unnecessary to set up a VPN in this case.
Expose ssh on non standard port (use keys)
Then ssh -L 8000:127.0.0.1:80 youropnsense
Open http://localhost:8000 in your browser
Is the remote location a static ip? You could create a firewall rule to only allow external acces from that ip. If it’s dynamic, set up dynamic dns and add the fqdn to the allow rule.
Edit:
However, I would recommend a vpn connection using wireguard.
Check out the road warrior tutorial.
Just be careful with how “simple” you go. Simpler for you is often simpler for people with bad intentions too.
Wireguard- i have an Opnsense router box at home and remote onto from my iphone
Im using zerotier with my opnsense router.
Just to make sure I understood correctly, you want to be able to access your router outside our private network?
Hmmm… Run a micro box on the back side and install Remote Utilities. Check it out. If you register, you’ll get a license for 10 connections free.
Simple just means it’s easy to hack. You will need to put a little effort to securing your network.
I am a little bit surprised that nobody said it before here, but the by far simplest and safest way would be to use SSH with password login disabled.
WireGuard VPN - road warrior set up.
Not the safest way and I don’t recommend it. Expose your Web UI to the internet
Well with zenarmor there is kinda?
Thank you.
I’m going to give this a shot
I just gave it a shot and there are so many settings I need to play with in order to get it up and running.
What can I do if I just simply want to log in from my phone when i’m away from router.
I do worry about Tailscale ultimately falling victim to ‘enshitification’, but it’s superb right now.
I had mine up and running on the router in no time. Incredibly simple, and quite robust so far. I look forward to an official plugin, and the promised speed improvements. But it’s been great so far.
When getting zerotier, dont forget to secure your ZT account. If someone gets access to it they can get to all of your networks