How can I use my server at home to host my own VPN server?

FM 3370

Gawd
Joined
Jun 29, 2002
Messages
791
I have a dual Xeon processor server at home running Windows Sever 2012 R2 which runs pretty much 24/7 and am just learning about VPN's. Would it be feasible to use that as a home VPN server rather than pay an external service provider monthly for VPN service? If so what are some good tutorials that can help me host my own VPN server?

I'm a complete beginner when it comes to VPNs. My research is limited to some Youtube videos which show how to use a hosted VPN server yet I haven't found one which explains how to create one for your home or small office.
 
Depends on what your goals of using a VPN are.

Generally, people use external VPN servers for anonymity, or securing a tunnel to an offsite resource. Internal VPN servers are used for private access when you are not at the office/home.

If you are looking to set up a VPN server at home, I would start here: https://openvpn.net/index.php/access-server/overview.html
 
OpenVPN Access Server is a super easy self contained VM that you could run in Hyper-V.

There are a ton of guides around OpenVPN out there, but the classic (non appliance) version can be a bit confusing getting certificates and config files setup the first few times, especially in a secure manner.

You could also use the built in Microsoft VPN functionality, the RRAS role in 2012.
 
Cmustang87, my goals are for anonymity and secure tunnel. We got a letter from our ISP about torrent activity and it looks like one of our roomates opened up a file sharing application which triggered it. Do not want any of that sort of activity traced to me. So I thought, I have a pretty good server here at home to maybe host my on VPN server yet not exactly sure how. I'll definitely take a good look at the OpenVPN link you provided.

Grentz, looks like OpenVPN could be what I'm looking for. I'll definitely take a look at using a Hyper-V virtual machine so it doesn't interfere with the main OS if I make a configuration change I don't like. Haven't thought of that before, thanks!
 
I think what you are looking for is more of an external type VPN service, not your own VPN server. If you vpn'd to your own box in your own network, and then that went to the internet for you...well...the ISP will still see everything you are doing.

I use vyprvn, there are many providers out there, even free ones (no idea how good they are).

Be prepared for higher latency/pings if you game at all.
 
Cmustang87, my goals are for anonymity and secure tunnel. We got a letter from our ISP about torrent activity and it looks like one of our roomates opened up a file sharing application which triggered it. Do not want any of that sort of activity traced to me. So I thought, I have a pretty good server here at home to maybe host my on VPN server yet not exactly sure how. I'll definitely take a good look at the OpenVPN link you provided.

Grentz, looks like OpenVPN could be what I'm looking for. I'll definitely take a look at using a Hyper-V virtual machine so it doesn't interfere with the main OS if I make a configuration change I don't like. Haven't thought of that before, thanks!

I was just about to say you are looking for an external VPN service like Private Internet Access, Express VPN or NordVPN to name a few. Open VPN would be for you to remote into your network not tunnel your traffic out (this prevents the ISP from seeing traffic)

I personally use Express VPN on a pfsense edge router for my network and also use it on my phone via their App. They are a bit more then most however their speeds & reliability have been fantastic.
 
I think what you are looking for is more of an external type VPN service, not your own VPN server. If you vpn'd to your own box in your own network, and then that went to the internet for you...well...the ISP will still see everything you are doing.

I use vyprvn, there are many providers out there, even free ones (no idea how good they are).

Be prepared for higher latency/pings if you game at all.

As for higher latency/pings this is not always true. With adding another route, yes you would thing you would get much higher but really it is negligible in most cases (this is from my personal experience with my VPNs) as I also twitch stream and my latency on Twtich actually went down when I stream over the VPN instead of without it. Most games I gained about 2-5ms on games.
 
As for higher latency/pings this is not always true. With adding another route, yes you would thing you would get much higher but really it is negligible in most cases (this is from my personal experience with my VPNs) as I also twitch stream and my latency on Twtich actually went down when I stream over the VPN instead of without it. Most games I gained about 2-5ms on games.

It's not just adding another route. It's encapsulating every single packet that egresses and decrypting the return packets. VPN is a large overhead, and a lot of times people will set exclusions on their VPN service or create static routes on their local computer to prevent it from going over the VPN.
 
It would only help hide your traffic from something like open wifi at starbucks. Your VPN would still terminate at your house, and your ISP would be able to see any in/outbound traffic.

If you are going for privacy, your only option is an external VPN, so the traffic between your house/VPN service is encrypted. Then your ISP can't see the traffic, but as soon as it exits the VPN node, it's visible to everyone upstream.
 
Another option would be to use AWS to spin up a VPN and connect through that. Not sure on costs, though.
 
Another option would be to use AWS to spin up a VPN and connect through that. Not sure on costs, though.
You can use their free tier for a micro(nano/mini?) server and run this on AWS.

The only problem with AWS is you will be paying for bandwidth :(
 
After a forum search this might be the thread to ask this question.
I am trying out a VPN right now. I have a server that acts as a router for the rest of my PC's. Problem is when the VPN is active (Server) my network looses net connectivity. Server is fine, just the networked PC's.
Apparently I probably need to add routing rules and firewall rules? Can anyone lead me in the right direction with a walk through to do this.
My setup is Win7 server -->Switch-->Networked PC's(Win10)
 
you should install ESXi on that machine, run your win2k12 as a VM then also add on pfsense and let it run your VPN for you lan.
 
After a forum search this might be the thread to ask this question.
I am trying out a VPN right now. I have a server that acts as a router for the rest of my PC's. Problem is when the VPN is active (Server) my network looses net connectivity. Server is fine, just the networked PC's.
Apparently I probably need to add routing rules and firewall rules? Can anyone lead me in the right direction with a walk through to do this.
My setup is Win7 server -->Switch-->Networked PC's(Win10)

You need to check your access rules if that device is also doing any routing. You'll have to set permit rules to allow traffic through the VPN.

How is your VPN setup? Is this just a Windows Server with RRAS?
 
After a forum search this might be the thread to ask this question.
I am trying out a VPN right now. I have a server that acts as a router for the rest of my PC's. Problem is when the VPN is active (Server) my network looses net connectivity. Server is fine, just the networked PC's.
Apparently I probably need to add routing rules and firewall rules? Can anyone lead me in the right direction with a walk through to do this.
My setup is Win7 server -->Switch-->Networked PC's(Win10)

Also - what are you trying to achieve with this VPN? Answering this question will help me help you understand best practices and simplify your approach.
 
Also - what are you trying to achieve with this VPN? Answering this question will help me help you understand best practices and simplify your approach.
Thanks for the reply Cmustang87.
I am using a purchased VPN service from PrivateVPN. I am trying to avoid blackout games for my NHL TV subscription.
 
Thanks for the reply Cmustang87.
I am using a purchased VPN service from PrivateVPN. I am trying to avoid blackout games for my NHL TV subscription.

I would suggest starting your own thread rather than hijacking this one. I think you're doing this the wrong way. All you need is an external VPN service then access your NHL website to stream the games from that computer.
 
Back
Top