By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

instance recommendation to run a private vpn

0

Hello

I would like to know the requirements for running a private vpn on an instance. Is it better to run open vpn or wiregaurd.

I would like to set the vpn up on ubuntu as I have experience with the os. Is there a better option to install a vpn on server any advice would appreciated

Topics
Networking & Content DeliveryCompute
Tags
Amazon VPCAmazon EC2Compute
Language
English
vrj123
asked 8 months ago318 views
3 Answers
2

You have the native AWS Client VPN offering.

Is there a reason for functionality or cost not to go down this route?

You’ll have the overhead to patch your OS and VPN software if hosted on an EC2.

There are also 3rd party offerings in marketplace such as Aviatrix https://aws.amazon.com/quickstart/architecture/aviatrix-user-vpn/ which I’ve used and works really well.

profile picture
EXPERT
Gary Mclean
answered 8 months ago
profile picture
EXPERT
Riku_Kobayashi
reviewed 8 months ago
1

Requirements:

  • Instance Type: Depending on your expected load and number of connections, a t2.micro or t3.micro might suffice for a small number of users. However, you might want to scale up if you're expecting heavier traffic.
  • Security Group Settings: Ensure that the necessary ports for your VPN server are open. For OpenVPN, this would typically be UDP 1194 (by default), and for WireGuard, it would be UDP 51820 (by default).
  • VPC & Networking: Ensure your instance is associated with a public IP if you want to connect from external networks, and the necessary routes are in place.

OpenVPN vs. WireGuard:

OpenVPN is a more mature solution with a longer track record. It's versatile, widely supported, and has a plethora of configuration options. It's known for being secure and reliable. However, some users find it a bit heavier in terms of resource consumption. WireGuard is newer but has gained popularity for being lightweight and fast. It's built into the Linux kernel, which means it's very efficient. It's also easier to set up than OpenVPN and is considered to be very secure, although it hasn't been around as long as OpenVPN.

My choice: OpenVPN

Ubuntu is a solid choice for setting up a VPN server. If you're familiar with Ubuntu, it will make the setup process smoother for you. AWS offers Ubuntu AMIs (Amazon Machine Images) that you can use to quickly launch an instance.

profile picture
Vitor Castellani
answered 8 months ago
profile picture
EXPERT
Riku_Kobayashi
reviewed 8 months ago
  • vrj123
    8 months ago

    Thanks for your advice, I found a guide for setting up openvpn on AWS

    https://www.youtube.com/watch?v=R82Peq5T9jQ

  • Vitor Castellani
    8 months ago

    I'm glad I could assist. I'd also like to mention that in certain scenarios, the use of AWS's own VPN services might be more appropriate as Gary mentioned below, offering streamlined integration and management within the AWS ecosystem, even though it doesn't seem like your scenario in this moment.

0

Thanks Gary and Vitor

These are the 2 options for wireguard and openvpn that are free

https://aws.amazon.com/marketplace/pp/prodview-g2qdwawxwpliq?sr=0-7&ref_=beagle&applicationId=AWSMPContessa

https://aws.amazon.com/marketplace/pp/prodview-y3m73u6jd5srk?sr=0-1&ref_=beagle&applicationId=AWS-EC2-Console#pdp-pricing

Please advise as to the limit of simultaneous connections Wireguard allows. I understand openvpn allows for 2.

ideally, I would like to conect my home and my two sisters homes to the vpn using openwrt routers. the max devices from the three connections should not exceed 20

Am I on the right path here for my use case?

vrj123
answered 8 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content