Looking for: Easy VPN Server

VPN
1

HI all

Iv been doing some research and playing, but I can’t find a solution which ticks all my boxes.

I want to install a VPN solution on my servers at home for when myself, or friends / family are out travelling.

I first used my built in VPN solution on my router (Unifi) however i found that I can’t easily put my firewall rules in place, so when I connect, all my filters are ignored and traffic can flow anywhere it wants, including across vlans.
Yes I know I can fix it using command line solutions, however its not a elegant solution, and if i need to make a change id prefer not having to ssh into my router to make changes.

So i figured id setup a VPN vlan, which I know I can then set firewall rules on that network.

That is where im now stuck
Im looking for a VPN server I can install on a linux VM, however the ones I’m finding either require you to install an app on your pc / phone, don’t seem to work over a port forwarded NAT, or are bigger solutions than what im looking for
EG: PFsense router, but only using the vpn aspect.

What im looking for is a simple VPN server where

- I can set users and passwords (No certs or files being required to be transferred or installed)
- No App required (L2TP/IPSec)
- easy to configure new users (Dont mind terminal config to set new users)
- Ideally no virtual routers or anything so I can use my current firewall rules
- Ability to set Static IP’s per user / device

I have no idea if my full list is possible, but any help will be appreciated.

Thanks in advance.

2

I know you don’t want an app but OpenVPN Access Server is great. You can configure it to allow app download from a custom portal you enable for your users to login to with a domain name.

3

SoftEther is a decent project that supports many VPN protocols

4

Are you using Edgerouter or unifi? I know there is a wireguard package for Edgerouter.

Openvpn is pretty easy as well.

5

I don’t know much about L2TP, but I think it’s deprecated.

I’m not a networking expert, but I tried to set up IPsec behind NAT and I failed miserably. If you know how to fix it, a VM running PFSense (I think it’s been replaced/superseded by OPNSense) is very nice- ignoring NAT it gives you a good web administration interface where you can configure IPsec easily.

I ended up using ocserv, which I really like, though

6

Try meshvpn.net or ifastvpn.com

7

Wireguard and PiHole seem to be decent

8

+1 for openvpn, it checks all the items on your list, minus the app requirement.

Android has an API for VPN services, so most phone solutions except PPTP and L2TP will come with an app.

9

If I have to go down the app route I will.
I’d just prefer to use the built in VPN clients on my phone and PC rather than relying on a third party solution if possible

10

Does OpenVPN support all the items on my list?

11

I gave this one a go and had issues connecting my phone to it once configured.

12

+1
Connecting to Softether with l2tp/ipsec natively on iOS, android, win10. Works flawless even for a beginner Like me

13

I’ve used this for an IoT project using Raspberry Pi Zeros, it was so simple i forgot about it.

14

Came here to suggest this. I use it all the time. It has a great web interface, and anything that can connect to open VPN can connect to it.

15

also came here to suggest this one.
it is very easy to setup, create/manage users and so on.
https://pritunl.com/

16

Pritunl

Gave this a look before and seemed ok
have re-installed it and seems to work fine.
Just noticed two issues which i can work around, just would be a nice to have

  1. Can’t delete users, only disable them
  2. Can’t set IP addresses manually

Any input on these?

17

Algo vpn

My research shows that it needs applications installing on the client devices.
“Wireguard”

18

Can you explain why it’s insecure?

19

Pihole isn’t a VPN solution?
I already use it on my network

20

I setup an ipsec docker server in about 10 minutes. Runs great.

Let me know if you need a yml or anything