×
Community Blog How Do I Setup SoftEther, OpenVPN, WireGuard, SSL VPN Server

How Do I Setup SoftEther, OpenVPN, WireGuard, SSL VPN Server

In this tutorial, you will learn to set up four types of VPN Servers on cloud like SoftEther VPN, OpenVPN, SSL VPN and WireGuard VPN.

How to Create a VPN with WireGuard and Alibaba Cloud

This tutorial outlines how to establish a point-to-point VPN connection with WireGuard on Alibaba Cloud ECS instances installed with Ubuntu 16.04.

WireGuard is a free and open-source application tool that implements VPN to establish secure point-to-point connections bridged configurations. WireGuard serves as a modern and high-performance VPN which is also easy to use. Popular VPN technologies such as OpenVPN and IPSEC are often complex to set up so, WireGuard aims to provide a VPN that is both simple and highly effective. WireGuard creates a point-to-point connection between two machines without mediation by a central server.

Prerequisites

  1. You must have two Alibaba Cloud Elastic Compute Service (ECS) instances activated and have verified your valid payment method. If you are a new user, you can get a free account in your Alibaba Cloud account. If you don’t know about how to set up your ECS instance, you can refer to this tutorial or quick-start guide. Your ECS instance must have at least 1GB RAM and 1 Core processor.
  2. You have a domain name registered from Alibaba Cloud. If you have already registered a domain from Alibaba Cloud or any other host, you can update its domain nameserver records.
  3. You have a non-root user with sudo privileges on each server.

Procedure

Follow the stpes outlined below to learn how to establish a point-to-point VPN connection with WireGuard on Alibaba Cloud ECS instances.

Installing WireGuard

We will need to install WireGuard software on each server before we can continue. First of all, you will need to add the WireGuard PPA to the system using the following command on each server.

sudo add-apt-repository ppa:wireguard/wireguard

You'll be asked to add the new package source, hit the ENTER button to continue. Now, upgrade all the available packages using the sudo apt-get update command.

Next, you will need to install the WireGuard kernel module with the required components. Execute the following command on each server and it'll do the job for you.

jsudo apt-get install wireguard-dkms wireguard-tools

Related Blogs

How to Create a VPN Server with OpenVPN

In this tutorial, we will show you how to create your own VPN server with OpenVPN.

In some countries it may be illegal to use a VPN. Please consult the law in your country before proceeding.

Virtual private networks (VPNs) were initially created with the purpose of securely connecting multiple internal networks and/or users over the Internet, constructing a virtual internal network, where authorized entities can access all resources within, as if they were available on-site/locally. By encrypting and authenticating all traffic, unauthorized parties cannot read data packets and cannot join the network. Nothing gets in and nothing gets out, so to speak; everything is contained within a secure bubble. While still being used this way, mostly by companies, nowadays more and more people are using it for another purpose: to encrypt their Internet traffic and hide their location (IP address), mostly for privacy reasons, but also for securing sensitive information when connecting from public places or bypassing firewalls and/or restrictions such as geo-blocking.

Over the Internet, data is passed along from machine to machine, until it reaches its destination. It is a relaying network that routes data packets, in a similar way to how paper mail travels in the real world, passing from post office to post office, until it reaches its destinatary. And just like with real mail, the problem is that anyone can read it along the way, because by default, data packets are unencrypted (the problem has been solved partially in the last years with encryption done at application level, e.g. HTTPS, TLS, etc). For example, if you go to a public place and connect to their Wi-Fi, then visit a site which has an address that starts with http:// and not https://, then your data leaves your device unencrypted. As packets travel across the networks, someone could steal an username and password that you have entered to log in to that site. A common technique that is easy to employ is called packet sniffing. In certain conditions, internal network traffic can be sniffed (captured, read and/or collected) by anyone on that network. This means that one customer in a hotel may be able to see every data packet that comes and goes to and from everyone else staying at that hotel, and using the same network. By using a VPN, you can block these attacks, since packets are encrypted before leaving your device.

There are a lot of businesses on the Internet that offer VPN services but creating your own server has several advantages. A public VPN provider usually squeezes tens (or even hundreds) of users on the same computing instance. This (over)sharing of resources can lead to inconsistent performance, limited bandwidth and sometimes even downtime. Besides improving the quality of service (and possibly even security), creating your own OpenVPN server also gives you total control over every setting and certainty that your browsing history isn't being logged and sold to advertising companies. In some cases it may even help avoid being blocked by some sites or game servers, which automatically block any incoming traffic from publicly known commercial VPN IP addresses.

How to Set up a VPN Server Using SoftEther

In this tutorial, we will show you how you can take advantage of all the great features of SoftEther VPN by showing you how you can set up a VPN on it.

SoftEther VPN ("SoftEther" stands for "Software Ethernet") is one of the world's most powerful and easy-to-use multi-protocol VPN programs. It can run on nearly any platform, including Windows, Linux, MacOS, and even FreeBSD and Solaris.

SoftEther VPN is open source and works on multiple platforms. You can use it for personal or commercial use for free charge. It is compatibility with today's most popular VPN products among the world and has the interoperability with OpenVPN, L2TP, IPsec, EtherIP, L2TPv3, Cisco VPN Routers, and MS-SSTP VPN Clients. SoftEther VPN is also the world's only VPN software which supports SSL-VPN, OpenVPN, L2TP, EtherIP, L2TPv3 and IPsec, as a single VPN software program.

If interested, you can read more information about the features and specifications of SoftEther VPN on their official website. In this tutorial, we will show you how you can take advantage of all the features of SoftEther VPN by showing you how to set up a VPN serving using it.

How to Create an SSL VPN server on Alibaba Cloud in 15 Minutes

In this tutorial, we will demonstrate a quick way to build an OpenVPN server on Alibaba Cloud ECS by simply running 3 lines of codes.

The purpose of this article is to demonstrate a quick way to build an OpenVPN server on Alibaba Cloud Elastic Compute Service (ECS). This tutorial provides a simpler alternative to the more detailed configuration of OpenVPN in this tutorial. To follow the steps below, you will need an Alibaba Cloud account and some basic knowledge of cloud computing.

Step 1: Create an ECS Instance

In this step we are going to configure an ECS instance with the correct OS and ACL. We will use us-east region to build the infrastructure.

i) Log in to Alibaba Cloud, clock on Products, go to ECS service

ii) Click on Instances

iii) Change to us-east region

iv) Click "Create Instance"

v) Choose "Pay As You Go", filter instance type "t5-lc1m2.large", select the instance type

vi) Choose Ubuntu 16.04 and click on "Next: Networking"

vii) Untick the "Assign public IP" and go to "Next: System Configurations"

viii) Configure "Login Password" and "Instance Name" then click on "Next: Grouping"

ix) Click on "Preview"

x) Tick "Terms of Service" then click on "Create Instance"

xi) You should be able to see the server is starting

xii) While we wait for the server to start, we can get a static IP, click on "EIP"

Related Products

Simple Application Server

One-stop management console simplifies operations including domain name resolution, application deployment and server management.

Elastic Compute Service

As the largest cloud provider in China and the 3rd largest cloud provider worldwide by revenue , Alibaba Cloud ECS has the scale to provide high elasticity that can meet your business needs instantly. We can provide hundreds of thousands of vCPUs in minutes for a single customer in a single region, that is because of our sophisticated smart placement algorithm, dynamic and automatic planing as well as our optimization of both hardware and software.

Related Courses

Establish virtual private connection with VPN Gateway

What is VPN? It’s an extension of private network across a public network, and enables users to send and receive data across shared or public networks as if their computing devices were directly connected to the private network. In this clouder course, you’ll learn how to conveniently establish virtual private connection on Alibaba Cloud with VPN Gateway.

Operate and Manage a Cloud Server

Understand the advantage of a cloud server. Learn how to purchase ECS on Alibaba Cloud, manage the server on our console, backup critical data and ensure your system can adjust according to business needs.

Related Documentation

What is VPN Gateway

VPN Gateway is an Internet-based service that securely and reliably connects enterprise data centers, office networks, or Internet-facing terminals to Alibaba Cloud Virtual Private Cloud (VPC) networks through encrypted connections. VPN Gateway supports both IPsec-VPN connection and SSL-VPN connection.

Create a VPN gateway

This topic describes how to create a VPN gateway. You must create a VPN gateway before you can use the IPsec-VPN and SSL-VPN services. After the VPN gateway is created, a public IP address is assigned to the VPN gateway.

Market Products url

Establish virtual private connection with VPN Gateway

What is VPN? It’s an extension of private network across a public network, and enables users to send and receive data across shared or public networks as if their computing devices were directly connected to the private network. In this clouder course, you’ll learn how to conveniently establish virtual private connection on Alibaba Cloud with VPN Gateway.

ParseServer powered by Websoft9(Ubuntu16.04)

ParseServer is the open source version of the Parse backend, and related projects.Parse Server is an open source version of the Parse backend that can be deployed to any infrastructure that can run Node.js.Parse Server works with the Express web application framework. It can be added to existing web applications, or run by itself.

0 0 0
Share on

Alibaba Clouder

2,599 posts | 764 followers

You may also like

Comments

Alibaba Clouder

2,599 posts | 764 followers

Related Products

  • VPN Gateway

    VPN Gateway is an Internet-based service that establishes a connection between a VPC and your on-premise data center.

    Learn More
  • Edge Security Acceleration (Original DCDN)

    Edge Security Acceleration (ESA) provides capabilities for edge acceleration, edge security, and edge computing. ESA adopts an easy-to-use interactive design and accelerates and protects websites, applications, and APIs to improve the performance and experience of access to web applications.

    Learn More