space5 2 Posted ... Let's assume that I want to remotely access my home computers through home wireguard VPN from a place very far from my house. I could connect to my house over the plain internet or a commercial VPN like AirVPN. AirVPN is convenient because it provides dynamic dns, but it also adds overhead in the form of extra encryption and more latency. It adds a bit of privacy. If I don't use AirVPN's dynamic dns and port forwarding, I have to set up another dynamic dns provider, but there are no extra encryption and no extra latency. When I connect to my home VPN remotely, do I want privacy provided by a commercial VPN? Quote Share this post Link to post
OpenSourcerer 1442 Posted ... 20 hours ago, space5 said: When I connect to my home VPN remotely, do I want privacy provided by a commercial VPN? In my opinion it'd be overkill, there is no real reason to do that. 1 ss11 reacted to this Quote Hide OpenSourcerer's signature Hide all signatures NOT AN AIRVPN TEAM MEMBER. USE TICKETS FOR PROFESSIONAL SUPPORT. LZ1's New User Guide to AirVPN « Plenty of stuff for advanced users, too! Want to contact me directly? All relevant methods are on my About me page. Share this post Link to post
space5 2 Posted ... I still haven't decided whether I want to use dynamic dns on my home router or commercial site-to-site vpn connectivity providers which provide me with NAT hole punching and relieve me from dynamic dns. I'm hesitant to use site-to-site vpn softwares because some of them can meddle with firewall. I have my own firewall rules. Quote Share this post Link to post
OpenSourcerer 1442 Posted ... Take the KISS approach – stay with DDNS. It doesn't need to be AirVPN, its DDNS implementation is specifically made for when you want to reach connected clients with a fixed name, such as for individual servers. I've used nsupdate.info for years until I found a domain registrar offering seamless DDNS integration into my own DNS zones. Quote Hide OpenSourcerer's signature Hide all signatures NOT AN AIRVPN TEAM MEMBER. USE TICKETS FOR PROFESSIONAL SUPPORT. LZ1's New User Guide to AirVPN « Plenty of stuff for advanced users, too! Want to contact me directly? All relevant methods are on my About me page. Share this post Link to post
space5 2 Posted ... If IP address changes, wireguard will not use the new IP address. yggdrasil may do, but I haven't tested yggdrasil with dynamic dns. Tailscale, netbird, and netmaker work around wireguard's inability to keep track of changing IP addresses. Quote Share this post Link to post
space5 2 Posted ... It turns out that yggdrasil works well with ddns hosts because it doesn't cache IP addresses behind DNS names. If my network becomes complex, then mesh vpn solutions like tailscale, netbird, and netmaker can help, but my network is simple at the moment. Quote Share this post Link to post
space5 2 Posted ... Apart from yggdrasil, there are also nebula, openvpn, and ipsec if I want self-hosted vpn that supports dynamic dns. Quote Share this post Link to post