Setting my own VPN

[JohnnyJazz]

First to clarify the matter I'm not interested in downloading porn or any other illegal activity, I just want to set up an independent and secure way to access my home server. I know we can pay for such service but as designing my home network is my current hobby I would rather do it myself if it's not too complicated for an amateur with time on its hands.

I'm currently researching the internet but I would appreciate it if people with experience of setting up their own VPN will be willing to share their experience here. I will try myself to post my progress in order to return the favor to the community. Thanks in advance for your help.

[Guest]

I installed OpenVPN on cloud server half an year ago. It's been working fine and was not at all expensive or difficult to make.

http://www.thaivisa.com/forum/topic/822748-openvpn-guide-for-ubuntu-1404/

[JohnnyJazz]

^ It looks like what I intend to do.

Are you "fluent" in LINUX ? I've basic knowledge but still in the beginner stage.

[Guest]

I'm fluent in Linux.

The key to fast learning is to read all the error messages what are displayed to the terminal as well as from the /var/log/ files. Then either try to interpret the errors by yourself, or copy the messages to google. It's quite likely that someone else have encountered the same problem before.

Fail and try again. It get's easier.

If everything goes well, then wonder, what the heck just did happen and are there some hidden problems

[gazzasore]

Run Linux Mint 17.3 if you not so fluent in Linux

Its very much like Win XP and Win7 to use

Also Youtube is a good place to start for info on how to install a VPN

Edited December 12, 2015 by gazzasore

[recycler]

I have a Synology server, it also serves as back up for my laptop, media server, security camera management and has a VPN function built in that I use when I'm in hotels on WiFi. And it has many other functions that you can use for free.

They are relatively cheap and you don't need a lot of knowledge to run them.

[RKASA]

If you are connecting to your own server at home you don't need a vpn you just just need to use secure login ssl on the server and then you are in a vpn mode between you and your server. The post does not say what reason your connecting and far to little information about the server to know what it is your wanting. If you want to remote admin the server use webmin program - if your server is running on a desktop version of linux or windows even then use teamviewer and you will be on the servers desktop remotely with a remote terminal and you can securely do anything including going back out on to the net and downloading things to the desktop or watch video - you get a real time view of the screen and use of the mouse /keyboard remotely and it is a secure connection. Does not have to be a server you can use it between any two PC connected to the internet and run it remotely even sling so to speak video that is on the HD or even streamed to it and then out to you where you are. The uses are endless and it works with linux,mac, or windows.

[oxo1947]

Its very inexpensive to buy (rent) a VPN ----I have had one for over a year , just a few $$ a month for 24 different locations around the world, I wanted to read a certain UK newspaper (I like their sports coverage) that is banned here, also I can watch TV (BBC etc) in different countries, and also things might change quickly so I thought I would take one now.

[jasonsamui55]

I've done this year's ago and have had several linksys old version g routers set up with custom open source firmware from ddwrt to replace the stock linksys / Cisco firmware. Doing it with the router is perfect for a whole house solution which allows you to connect hardware devices like a tv with Netflix in the firmware or DVD player with the same or Apple TV or others. Then get a Linux server in the US or UK or wherever you want to be and make sure it has unlimited bandwidth, especially if using for media streaming, and install squid. Set the router to connect to the squid server. That's all. You can set up multiple routers to connect to the same squid server, like one for home and one for office and another for the beach house and another for a friend. You can also set up the squid server to serve as a proxy to use on your laptop when you're on the go.

[JohnnyJazz]

I've done this year's ago and have had several linksys old version g routers set up with custom open source firmware from ddwrt to replace the stock linksys / Cisco firmware. Doing it with the router is perfect for a whole house solution which allows you to connect hardware devices like a tv with Netflix in the firmware or DVD player with the same or Apple TV or others. Then get a Linux server in the US or UK or wherever you want to be and make sure it has unlimited bandwidth, especially if using for media streaming, and install squid. Set the router to connect to the squid server. That's all. You can set up multiple routers to connect to the same squid server, like one for home and one for office and another for the beach house and another for a friend. You can also set up the squid server to serve as a proxy to use on your laptop when you're on the go.

Actually, I'm thinking of installing pfSense on a spare computer.

One additional advantage would be to separate the wifi network used by guests form the main network. I don't run an hotel but almost every guest who comes to our house request at one time or an other the wifi password and anyway I've never been really comfortable with wifi at the first place.

Edited December 12, 2015 by JohnnyJazz

[yenyen]

hi I just re-read your post, if you need free vpn try these:

www.bestcanadavpn.com

www.bestvpnusa.com

www.bestukvpn.com

if you're concerned with speed and need 24/7 "line" to your home server, you may consider, if your bandwidth is high enough, to set the server up to do a simple remote access protocol setup (if your servers are windows) you may not need a vpn.

If you're on Linux and you have to go vpn then make sure you have a static address to your server and set one of the free open source vpn's up, I don't know of any so I cannot provide any feedback, since everything I've needed could be handled by the free vpn's above.

also Ipv6 traffic is encrypted by default, I think it uses IPsec default, so you may want to look into that. a simple DNS change may be all you need.

Edited December 12, 2015 by yenyen

[DiDiChok]

Buy a Draytek router for your home network such as a 2860. Then you can dial-in to your home network using the VPN service on the home router which can use SSL or L2TP over IPsec. You can then even go back out on the internet from the home router like a paid-for VPN service only yours will be totally free. I use this facility besides having LAN to LAN links across VPNs to routers owned by other members of my family. Admittedly, the fastest speed is limited by the upload speed of the home router but as I have a cable service at home, it's good enough to watch streamed TV across the VPN from wherever I am.

Draytek routers can also be set up to use a DDNS server so that you can sign on to your network using a URL and not an IP address, which is particularly useful when your home IP address changes every so often. See here about DDNS: http://www.noip.com/ and on the Draytek web site.

While you can use Draytek's java based applet to make a VPN connection, I find it more convenient to use their 'Smart-VPN' client to make the connection. Then it's as though you are using everything as though you were at home. No Linux or Windows machines are needed to provide the VPN service, and you can send a 'magic packet' to the home network to wake up any pc's you want to use.

The routers also have a USB port and I've got a memory stick in one on my router so that I can drop files on there from anywhere. I suppose you'd call that a personal cloud these days.

Have a look at their web site here: http://www.draytek.com/index.php?lang=en and have a read under 'Supports' and 'FAQ and Application notes'. Tells you everything you need to know. The configuration could be said to be a bit daunting for the uninitiated, but the guides enabled me to set it all up.

I also use Voip (SIP telephony) on my V2860Vac router and have chosen a regional number from DrayTel. Then you can sign on on two routers at once no matter how far apart the routers are and when you're called both phones ring at the same time!

Read about DrayTel here: http://www.draytel.org/ and click on 'User Guide' and scroll down.

As you say it's your hobby, all this will keep you busy for a long time besides being really useful. The latest 2860 routers can have a SIM card in them so that your router can use mobile internet. I think Draytek has a supplier in Bangkok but as the company is based in Taiwan, you could ask them directly about Thailand.

[JohnnyJazz]

As you say it's your hobby, all this will keep you busy for a long time besides being really useful. The latest 2860 routers can have a SIM card in them so that your router can use mobile internet. I think Draytek has a supplier in Bangkok but as the company is based in Taiwan, you could ask them directly about Thailand.

You totally get it. Thanks for the detailed information. Good to know they are in Taiwan. I like to deal with Chinese companies, when you know how to establish the relation, they are very resourceful.

[willieaames]

I rented some time on cloud, made my own vpn and had US Netflix (from Australia) in the 36 minutes it took me to set up. I also used openvpn-install sh script but I made a few changes in my GitHub first.

Edited April 19, 2016 by willieaames