[TriLUG] Home VPN?

Wes Garrison via TriLUG trilug at trilug.org
Wed Feb 19 00:04:35 EST 2025 

Look at Wireguard.  It's really simple, and it's built in to modern Linux
kernels.

Linus called it a "work of art":
https://www.theregister.com/2021/12/08/wireguard_linux/

That's pretty high praise.

It uses public/private key pairs, so you just install it on your home linux
server or router and give it your public key, then you use the public key
from your server (or router) on your mobile/remote computer.

Here's the configuration on my Debian box in /etc/wireguard/wg.conf
Address = 10.10.5.1/24
SaveConfig = true
ListenPort = 58443
PrivateKey = private_key_of_your_server_or_router

[Peer]
PublicKey = public_key_of_your_remote_client
AllowedIPs = 10.10.5.2/32

And here's the config on my Windows client (peer):
[Interface]
PrivateKey = private_key_of_remote_laptop_or_client
Address = 10.10.5.2/24

[Peer]
PublicKey = public_key_of_server_or_router
AllowedIPs = 10.10.5.0/24
Endpoint = home.mydomain.com:58443

There are GUIs available for both Windows and Mac, and lot's of good guides
out there, but it's pretty simple.

You'll need to remember to open 58443 or whatever port you use on your
router if you don't have WG set up directly on your router.
_________________________________
Wesley S. Garrison
Xitech Communications, Inc.
phone:  (919) 260-0803
fax:       (919) 932-5051
__________________________________
"Lead us not into temptation, but deliver us from email."


On Tue, Feb 18, 2025 at 8:23 PM Matthew Glassman via TriLUG <
trilug at trilug.org> wrote:

> How difficult and precarious is it to set up a home VPN without relying on
> something like NORD or some other service?  I had the thought that maybe
> I'd want to try doing that but wasn't sure where to start and what I might
> want to consider.
> --
> This message was sent to: Wes <wes at xitechusa.com>
> To unsubscribe, send a blank message to trilug-leave at trilug.org from that
> address.
> TriLUG mailing list : https://www.trilug.org/mailman/listinfo/trilug
> Unsubscribe or edit options on the web  :
> https://www.trilug.org/mailman/options/trilug/wes%40xitechusa.com
> Welcome to TriLUG: https://trilug.org/welcome

More information about the TriLUG mailing list