Home vpn, what are the options?

I

iarim1232020-09-28 03:22:16

VPN

iarim123, 2020-09-28 03:22:16

Hello, the problem is this:

There is a regular home computer on windows 10 with a gray IP issued by the provider. Through this computer, an entrance is made to a certain site, logging in with a foreign ip is fraught with the loss of an account. It is necessary to implement the ability to use this site through a smartphone (android or iphone) while in another country, but always show the home ip-address to the site. Options like teamviewer are not suitable, direct access is needed.
Hence the option to make a home vpn server. I tried SoftEther, but as far as I understand, to implement the desired ipsec connection through the phone, you need a static ip in order to forward ports, because. through the vpnazure solution available in softether-e, it is impossible to connect via ipsec.

Questions:

1. Will purchasing a static ip from an ISP solve the problem?
2. Do I look in the right direction and are there any other options (which it is possible for a non-expert to figure out on their own). I ask you to chew it right for the stupid, I almost don’t understand anything about it.

In addition to the exact implementation of the designated scheme, the speed, security and privacy of this connection play a key role.

Thank you.

Reply

Answer the question

In order to leave comments, you need to log in

5 answer(s)

C

CityCat4, 2020-09-28
@CityCat4

1. Will purchasing a static ip from an ISP solve the problem?

Decide. Partially. After that, you will need to raise a VPN server (which has clients for android and apple) and use it.

the speed, security and privacy of this connection play a key role.

Speed - will be limited either by the speed of the home provider or the speed of the connection provider - whichever is slower (or the speed of the slowest section - if the connection is from afar)
Security - depends directly on which VPN and how it is configured. Of course, do not use pptp. Of course, do not use md5 and other things that have been broken for a long time (and even try to avoid sha1 if possible). Of course, connecting to a VPN without passwords - only with certificates - passwords through public wifi networks leak out the only way.
privacyIt's not clear what exactly you mean here. There is no way to hide the fact that there is a VPN at this address - all existing methods are not designed for mobile clients (and those that are are most likely technically complex and require root). The fact of connecting to a VPN is reflected in two logs at once - a home provider and a cellular provider. The global observer (the state) can easily compare them - if you expect to blow the state in this way, it will not work. Scrap resistance will depend on the VPN settings - depending on the client, it will be possible to put it on an arbitrary port or not.

D

Dimonchik, 2020-09-28
@dimonchik2013

teamviewer
has clients for phones

A

antonwx, 2020-09-28
@antonwx

Why not just buy any vpn and use it?
Although, of course, if you need a guarantee that they won’t burn, well, there’s absolutely no way at all, then yes, you need to buy a static ip and deploy a server on your own.

V

Vitaliy, 2020-09-29
@Vitaliy-L

Statics and software WireGuard. Or a router with its own DDNS and VPN (OpenVPN or L2TP + IPSec is better)