Hi all
Is anyone doing this?
I have a basic linode server.
It has ubuntu 2204 with , openvpn & pihole for ad blocking and such.
It is limited but does what I want it for now.
I did find this:
https://www.youtube.com/watch?v=GjlfVoRxkvU
It is for installing pfsense on a linode server. I expexct it is a matter of using the opnsense one instead.
Another idea idea was to install opnsense on virtualbox, setup with 2 lans using a linux viirtual machine to setup using the web browser.
So I would use install opnvpn & setup the appropriate clients.
Then have both virtual machines on a NAT network to test then vpn access. Then opnsense would have a single WAN network.
Then attach the virtual drive to the linux machine.
Then use ssh to using linux DD to the linode server (in a special mode allowing raw access to the lindode drive).
I I guess I would need to change he IP addesses in the ovpn files created to that of the lindoe server.
So has anyone done anything similar?
It will have a single WAN, with openvpn access to a non standard port (not 1194).
Useful info appreciated!
Why allow inbound OpenVPN to your WAN? Set up an outbound VPN to your VPS and allow its VPN clients to connect to each other.
That way, you have no inbound rules on your WAN interface and you'll only have to look after one OpenVPN server.
Bart...
I should have been more clear.
The opnsense vps will replace the present one (linux with pihole & openvpn)
My motivation is primarily economic & also related to privacy & security.
So presently I have my own internet connection with modem & virtualized router.
That my not always be the case.
If in a situation with internet access & no control over the router, will need to use a vpn if privacy & security is an issue.
It presently saves me money when connecting to the internet on my phone through data usage.
The linode basic server is $5 US/month.
Electricity prices pretty much everywhere is crazy, so maybe no home server. I still want the benefits of using opsense though.
I have NO trust for any commercial vpn service.
I am looking for input from those who have managed to setup opnsense on a server.
Yes I have been running OPNsense on Hetzner cloud (CPX11 instance) for over a year now.
I'm also using it as for personal VPN exit node to my home OPNsense via wireguard.
Hetzner provide OPNsense ISO image right out of the box, so installation is super easy.
Not sure about Linode I have never used it before.
Quote from: zan on February 10, 2023, 04:24:56 PM
Yes I have been running OPNsense on Hetzner cloud (CPX11 instance) for over a year now.
I'm also using it as for personal VPN exit node to my home OPNsense via wireguard.
Hetzner provide OPNsense ISO image right out of the box, so installation is super easy.
Not sure about Linode I have never used it before.
Hi.
I llooked into it, linode it seems is necessary for me.
I need a VPS in my country for various reasons - specifically Australia.
Not much more choice it seems.
I am - for different applications - a satisfied customer of vultr.com. They support FreeBSD and seem to have at least two data centre locations in Melbourne and Sidney.
Given a standard FreeBSD virtual machine you should be able to turn it into an OPNsense by the bootstrap method (https://docs.opnsense.org/manual/virtuals.html).
HTH,
Patrick
Hey, just stumbled upon your thread and wanted to share my 2 cents in case you still need help. Tbh, I'm not familiar with linode servers, but I have installed opnsense on a VPS before. It's definitely doable, and there are a lot of tutorials out there to help you get started. As for your idea of using virtualbox, that could work too. I've used virtualbox for testing before and it's pretty straightforward. Just make sure you set up the network settings correctly so that your virtual machines can communicate with each other and the outside world. Regarding the ovpn files, you'll definitely need to change the ishosting (https://ishosting.com/en) IP addresses to match your linode server. And if you're using a non-standard port, make sure to specify that in the ovpn files as well. Hope this helps.