How to Install Your Own Forever Free OpenVPN Server on Ubuntu. Oracle Always Free Tier

Introduction

This tutorial will guide you through the process of setting up your own OpenVPN server on an Ubuntu instance using Oracle Cloud's Free Tier. By the end of this guide, you'll have a fully functional VPN server that you can use for secure internet access.

Step 1: Install OpenVPN Access Server on Ubuntu

1. Create an Ubuntu instance on Oracle Cloud's Free Tier.
2. Connect to your instance via SSH:

   ssh username@your_instance_ip
   

3. Update your package list:

   sudo apt update
   

4. Install the OpenVPN Access Server:

   sudo apt install openvpn-as
   

Step 2: Open Ports in Ubuntu iptables and Oracle Cloud Console

1. Open ports in iptables:

   sudo iptables -A INPUT -p tcp --dport 443 -j ACCEPT
   sudo iptables -A INPUT -p udp --dport 1194 -j ACCEPT
   

2. Open the Oracle Cloud Console and navigate to your instance settings.
3. Edit the security list to allow inbound traffic on ports 443 and 1194.

Step 3: Add OpenVPN Repository and Install OpenVPN

1. Add the OpenVPN repository:

   sudo add-apt-repository -y ppa:openvpn/openvpn
   

2. Update package lists again:

   sudo apt update
   

3. Install OpenVPN:

   sudo apt install openvpn
   

Step 4: Configure Public IP and Client Specific DNS

1. Edit the OpenVPN server configuration file:

   sudo nano /usr/local/openvpn_as/etc/as.conf
   

2. Set your public IP in the configuration.
3. Specify the DNS server for clients, if necessary.

Step 5: Create New VPN User and Set Password

1. Create a new user for VPN access:

   sudo /usr/local/openvpn_as/scripts/sacli --user newuser --key "prop_superuser" --value "true" UserPropPut
   

2. Set a password for the new user:

   sudo /usr/local/openvpn_as/scripts/sacli --user newuser --new_pass=YOURPASSWORD SetLocalPassword
   

Step 6: Download OpenVPN Client and Connect to VPN Server

1. Download the OpenVPN client from the official site or your preferred platform.
2. Import the configuration file provided by the OpenVPN server into your client.
3. Connect to the VPN using your new user credentials.

Step 7: Fix Invalid SSL/TLS Certificate Error

1. If you encounter an SSL/TLS error, ensure that your server's public IP is correctly configured in the OpenVPN settings.
2. You may need to regenerate the SSL certificates using:

   sudo /usr/local/openvpn_as/scripts/ovpn-init
   

Step 8: Reset Super Admin Password

1. To reset the super admin password, use the following commands:

   cd /usr/local/openvpn_as/scripts
   ./sacli --user "openvpn" --key "prop_superuser" --value "true" UserPropPut
   ./sacli --user "openvpn" --key "user_auth_type" --value "local" UserPropPut
   ./sacli --user "openvpn" --new_pass=NEWPASSWORD SetLocalPassword
   ./sacli start
   

Conclusion

You have now successfully set up your own OpenVPN server on an Ubuntu instance using Oracle Cloud's Free Tier. This setup allows you to securely connect to the internet and maintain privacy. For further enhancements, consider looking into firewall configurations or additional user management features.