OpenVPN - there are no other words, and there won't be.
-----
Let me expand my answer a bit. Every time I need another VPN, I try different solutions, from PPTP to WireGuard, not counting privately-owned systems and all sorts of exclusive solutions for a well-known operating system ..
And so for 20 years.
Over the years, I have built hundreds of networks and solutions from simple ones for 10-20 clients to access servers for several thousand.
OpenVPN has a lot of disadvantages, it does not have native clients, but there are three very big advantages:
1) Relatively high speed
2) Very fast lifting, installation and debugging
3) It works everywhere, on any platform (yes, I raised it even on very exotic systems like OS-9), with any MTU, on any type of network, it goes through all conceivable and inconceivable NATs.
Total: alas, in my opinion, there is no better alternative to it yet.

Pfsense all box
L2tp for customers. I understand not centos.
Then by mana l2tp in centos and ipisek

L2TP / IPSec out of the box and in android, and in poppy, and in Windows

Pritunl, but there with serts, a sert with a user is generated in one click.
A pincode/pass is attached to the certificate

shadowsocks

StrongSwan suits your requirements, perhaps.