amazing, I've converted my VPN tunnels from Wireguard to an OpenVPN setup using peer fingerprints instead of a whole PKI. This is equivalent in complexity to dealing with Wireguard keys but has some benefits:
- only one openvpn server instance required for all my tunnels to the cloud instead of a separate wireguard instance for each server that needs a static IP from my cloud VPS
- cleaner management of routes
- properly handles MTU/frags so I don't have the Wireguard UDP/QUIC problems
and it's actually faster lmao thanks to the OpenVPN DCO
- only one openvpn server instance required for all my tunnels to the cloud instead of a separate wireguard instance for each server that needs a static IP from my cloud VPS
- cleaner management of routes
- properly handles MTU/frags so I don't have the Wireguard UDP/QUIC problems
and it's actually faster lmao thanks to the OpenVPN DCO
1
