TLDR: VPN-newbie wants to learn how to set up and use VPN.

What I have:

Currently, many of my selfhosted services are publicly available via my domain name. I am aware that it is safer to keep things closed, and use VPN to access – but I don’t know how that works.

  • domain name mapped via Cloudflare > static WAN IP > ISP modem > Ubiquity USG3 gateway > Linux server and Raspberry Pi.
  • 80,443 fowarded to Nginx Proxy Manager; everything else closed.
  • Linux server running Docker and several containers: NPM, Portainer, Paperless, Gitea, Mattermost, Immich, etc.
  • Raspberry Pi running Pi-hole as DNS server for LAN clients.
  • Synology NAS as network storage.

What I want:

  • access services from WAN via Android phone.
  • access services from WAN via laptop.
  • maybe still keep some things public?
  • noob-friendly solution: needs to be easy to “grok” and easy to maintain when services change.
  • Lordjohn68@lemmy.world
    link
    fedilink
    English
    arrow-up
    6
    ·
    10 months ago

    I chose wireguard implemented by pivpn (i like pi’s)

    Wireguard app on phone and a quick duckduck will find you a script or app for your laptop. Connected to your home in seconds.

    • PlutoniumAcid@lemmy.worldOP
      link
      fedilink
      English
      arrow-up
      4
      ·
      10 months ago

      PiVPN is elegant. Easy install, and I am impressed with the ascii QR code it generates.

      But I could not make it work. I am guessing that my Android setup is faulty, orrrr maybe something with the Pi? This is incredibly difficult to troubleshoot.

    • PlutoniumAcid@lemmy.worldOP
      link
      fedilink
      English
      arrow-up
      1
      ·
      10 months ago

      I used Zerotier before and I still use it now. It is also the solution I am now going to continue with.

      I wanted to try Wireguard to get away from a centrally managed solution, but if I can’t get it working after several hours, and Zerotier took five minutes - the winner is clear.

  • teslasaur@lemmy.world
    link
    fedilink
    English
    arrow-up
    2
    ·
    10 months ago

    Personally I would have gone for OpenVPN access server on Debian. Fairly simple and well documented for those starting out.

    I have used and worked with OpenVPN connect on android, PC and Mac.

      • teslasaur@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        10 months ago

        OpenVPN connect on both. I load the .ovpn-file that is exported from the server and that’s it.