Our license is up for renewal on the openVPN access server, this time it will be $840 for 10 users, I’m sure last time we renewed it was about $180 so looking for an alternative, it’s for work so needs to be secure and supported, so far I have found,
PiVPN easy enough, got it at home on my RPi3
our Draytek 2862 supports OpenVPN
Veeam PN although not sure if it up to date, says requires Ubuntu 18.04
what purpose do you have? is it more private access or for a business? I would recommend to use wireguard the docker setup is within minutes and it is very fast. What I really like is the QR code/import generation for easy fast setup for the clients.
Tailscale, Wireguard (split tunnel configuration), and on a paid service RemotePC (similar to Teamviewer but way way cheaper) 10 Pc count for the first year is $59.62 or two year $119.25 - user direct access their system, can remote print, and copy files to and from local/network drives. I prefer and push one of the other options normally - but if the site doesn’t want to install PfSense its a viable alternative for them. It uses TLS 1.2 and 256 bit AES encryption. Newer standards will roll out with it eventually.
Looked at that and OPNSense, not sure a fully fledged firewall just for remote access to in-house resources is the way to go, users only really want RDP and to access network shares on the go.
Business, access network shares and RDP nothing more really, the docker setup does not look like it can be done in minutes, I will read thoroughly again, looks interesting, no GUI I’m guessing?
We host in-house with hyper-v, it’s the actual license to enable more than 2 users https://openvpn.net/access-server/pricing/, so looking for something I can host on Hyper-V for free or cheap, I know PiVPN will run on it no probs, just looking for suggestions
You can leave most of the advanced firewall features disabled and still get a lot of value from it. It’s a trusted security platform with a great management UI.
And you can also purchase a support plan from Netgate if you want to have a resource like that available. Looks like it would cost you less tha. You’re paying for OpenVPN AS. I’m not affiliated with Netgate at all, just a long-time fan.
It comes with an web gui which lets you create you new clients configs in 2 mouse clicks. You only need to port forward 51821/udp on your firewall and define the WAN/DNS name in the docker cfg.
wg-easy is just a simple web frontend for native wireguard. Works like a charm. It supports authentication and user management is he’ll easy by using the web UI. You can just create your users and share the corresponding wireguard config or QR code. Would consider prod ready.
Firezone looks interesting but has some form of pricing and pro features. Haven’t used it by myself. It supports many features besides regulard VPN such as 2FA, where your users must login to the Firezone web interface from time to time. Guess it focuses more towards businesses with device management, grouping etc.
