Where I live wireguard and openvpn are completely blocked and my isp doesn’t provide a public ip.

Tailsclale and cloudflare tunnels don’t work either.

Is there a last resort method for accessing my home server (a mini pc running openwrt and docker).

Thanks!

  • Cloudless ☼@lemmy.cafe
    link
    fedilink
    English
    arrow-up
    6
    ·
    edit-2
    8 months ago

    Find a cheap hosting solution that provides a fixed IP address, then host your own VPN or proxy server there.

    Edit: if you use a non-standard port for the VPN, it should be less likely to be blocked.

    • Admiral Patrick@dubvee.org
      link
      fedilink
      English
      arrow-up
      7
      ·
      edit-2
      8 months ago

      To add on to this answer:

      If they’re blocking Wireguard/OpenVPN at the protocol level, there may not be anything you can do (running on a different port, etc).

      If HTTPS works, between a cloud VPS and your home connection, you might be able to setup Nginx + VPN-WS on your cloud host to make a websocket-based VPN.

      https://github.com/unbit/vpn-ws

      I haven’t tried this, but it looks solid enough. Just make sure you configure Nginx correctly for authentication since it doesn’t do that on its own (intentionally since most web servers already have a solid authentication framework / plugin system).

      You may also try SSH port forwarding. Basically your home device maintains a persistent connection to the cloud server over SSH and forwards one or more ports (its SSH, for example) over that, and the cloud server makes that available.

      • mFat@lemdro.idOP
        link
        fedilink
        English
        arrow-up
        3
        ·
        edit-2
        8 months ago

        This is the case unfortunately. They are blocked at protocol level.

    • atzanteol@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      6
      ·
      8 months ago

      Wireguard doesn’t obfuscate its traffic so non-standard ports may not help depending on how sophisticated the blocking is (they could recognize the protocol and block your traffic regardless of port).