Looking to replace my home PPTP VPN with something more secure

VPN
1

I’ve had a VPN at home for years using PPTP on a host running Windows 10. I’d like to setup another way to accept incoming connections but cannot find the best way to do it. The main issue is connecting with my phone that will only use the IKEv2 protocol, but I’m not seeing a way to setup a server using that protocol.

Anyone have any advice?

2

Windows as a server limits your possibilities:

  • SoftEther is probably your best choice
  • OpenVPN also supports use as a server on Windows
  • strongSwan used to work as an IKEv2 server on Windows but I don’t think it does any more
  • WireGuard doesn’t officially support Windows as a server but it is just possible to make it work using hacks documented on Henry Chang’s blog
  • Some people run a Linux VM inside Windows, but that’s a lot of forwarding of packets backward and forward
  • Other people have purchased a Raspberry Pi so they can run Linux and have better support for VPN servers
  • I don’t know if WSL 2 would work
3

If you want to keep using Windows, SoftEther will work for you as it also offers an OpenVPN server.

I recommend OpenVPN or WireGuard on Linux though.

4

Just add a raspberry pi to your router download pivpn

5

Definitely recommend Shadowsocks protocol.

6

Replace your home router with something which supports OpenWRT. Setup OpenWRT to accept what ever VPN you want such as Wireguard, OpenVPN or L2TP/IPsec, etc.

That would be my advice. No need to keep your PC on for no reason. If you want access to your PC setup WoL.

7

This too, but that assumes OP has access to such gear. I suppose he could turn his Win10 PC into a pfSense/OPNsense firewall.

8

Although yes he could install OpenWRT/PfSense or my favourite VyOS on his PC. A TP Link Archer C7 or something similar is no more than £40 here in the UK.

If OP is young and living with parents he could even argue he would save £40 in electricity after 2 - 3 months not running the PC 24/7.