I want to set up my NAS as VPN-Server. I took a look at the Asustor VPN Server application, but it only supports PPTP, OpenVPN and L2TP.
Is is possible to use Wireguard with my Asustor NAS?
I know I could do it with Docker, but I want to use native applications because last time I was abroad, Docker crashed…
Thank you and best regards
Update :
I got a reply from the Asustor Support, they are currently implementing Wireguard to the Asustor VPN Server application and it should be available soon. Great work and support from Asustor!
Update 2:
Eventually it is now integrated in Asustor VPN Server and ADM 4.3!
I tried doing that, but in the end It made much more sense to invest in a Mikrotik router which has an inbuilt wireguard server. It is also much more secure than the opening port on NAS.
You can use Tailscale, there is a native app in the AppStore. Or use wireguard with docker and Tailscale as a safety net for when you encounter issues with docker
not sure if it suits your scenario, but on my setup i have openvpn running on router (TPLINK AX6000), if i need openVPN for whatever reason… for file access i use sftp or webdav with asustor ddns (much faster download/upload speeds than anything else i tried) without any vpns… and for services/apps access i have nginx reverse proxy manager setup with cloudflare domain (costs 5euro per year). Maybe i will try wireguard someday, but for now i dont even use vpn that much my best advice is to get router with wireguard support… you want to keep NAS behind it anyway wheter its vpn or wireguard
That’s not an option for me. I have glass fiber, so the router of my provider is required. For that reason there is no point in adding an additional router.
I also don’t think opening a Wireguard port is that dangerous. As far as I found out, Wireguard does not respond to unsolicited requests and will only communicate back if the keys match. So even if the port is open and an application would send a request, it wouldn’t know that Wireguard is running on that port as no response would come back.
In addition I would anyway change the port to a random one and not the default port. So except for there is an exploit, it seems like a risk I would take.
It’s old, needs more CPU from both, server and client side and it is so much slower. Check out a few comparisons.
Open VPN just feels outdated and should be replaced by wireguard.
Wireguard is much simpler. It is written with 4.000 lines of code, whereas open vpn is written with 70.000 lines.
It’s just the better and more state of the art protocol.
You also can let your phone connected to Wireguard and there is barely any impact, neither for batterie nor for speed
At the moment I’m using Tailscale as best alternative. The problem is, that on my work notebook I can’t install Tailscale, but I have Wireguard installed anyway. That’s the reason I would prefer a native wireguard connection as VPN.
What are your speeds like on the ax6000? I have an asus Gt-ax6000 that also has wiregaurd as a vpn server option. My problem is despite this being a decent 4core router my speeds on vpn are pretty much 10% of whatever my speed should be (same for wiregaurd and openvpn (open vpn is more like 7% though)).
My home vpn server is on a 2/2gb fiber line. When I connect to it from a 1/1gb connection I get 120/150 mbps max. If I am on my cell network at 400-500mbps I get around 50-60 mbps.
I am guessing it is the router not having enough juice for thr encryption… hoping the asustor 5304t I have will solve this particular issue.
Anyways my point, the consumer grade router vpns can work, but you might be limited on throughput.
Speed is the same with on or off VPN. Ofc I use it only to access stuff at home. Never used it to tunnel all my traffic, where I would be limited to upload speed of my internet provider, which is 100mbps (my download is 1gbps)
As far as I understand, that is how to connect your NAS to an existing network with via Wireguard VPN. It’s not how you set up the NAS as Wireguard Server.
Or did I misunderstand the tutorial?
my best advice is to get router with wireguard support… you want to keep NAS behind it anyway wheter its vpn or wireguard