Keyboard shortcuts

Press or to navigate between chapters

Press S or / to search in the book

Press ? to show this help

Press Esc to hide this help

Connecting Remotely - VPN

Contents

  1. Use Case
  2. Option 1: Router
  3. Option 2: StartTunnel
  4. Connecting Clients

Use Case

This connection method is ideal for fast, private, personal access from anywhere in the world using a VPN server running on your router or VPS. Only authorized devices have access to your server and installed services.

Option 1: Router

Most modern routers include a VPN server feature. If so, it is usually the preferred method for private, remote access to your server.

  1. If you haven't already, assign a static IP address to your server on the LAN. Refer to your router's user manual for detailed instructions.

  2. Since home IP addresses can change without warning, we highly recommend Setting up Dynamic DNS.

  3. Enable your router's VPN server. Refer to your router's user manual for detailed instructions.

Option 2: StartTunnel

By default, StartTunnel exports wireguard config files that are configured for split tunneling, allowing you to use your StartTunnel VPN to access your StartOS server and installed services while also preventing it from being automatically used for all Internet traffic.

There are three reasons to select this option:

  1. Your router does not offer a VPN server.
  2. Your router's VPN server is not automatically configured for split tunneling.
  3. You are already using StartTunnel for clearnet hosting, so most of the work is already done.

To use StartTunnel for private, remote VPN access, see Using StartTunnel, including the section for Adding a Client Device for Private Access

Connecting Clients

Once you have successfully enabled a VPN server on your router or used StartTunnel to create an inbound tunnel and new gateway, follow instructions below to privately connect your client devices to your server using a VPN.