Listing Thumbnail

    OpenVPN Access Server (5 Connected Devices) / Self-Hosted VPN

     Info
    Deployed on AWS
    Free Trial
    AWS Free Tier
    OpenVPN Access Server is an enterprise-grade business software VPN solution that provides a securely encrypted connection to private networks over an unsecured network such as the internet.
    4.5

    Overview

    Play video

    This offering is locked to 5 connections. If you need the flexibility to scale, we recommend our PAYG listing instead: https://aws.amazon.com/marketplace/pp/prodview-f5qcwyw2gy256 

    Access Server for AWS delivers the best-of-breed VPN solution for secure remote access, site-to-site VPN and secure SaaS access for organizations of all sizes. Our award-winning open-source protocol is the industry standard for accessing private information securely, ensuring safe access to internal data and delivering zero-trust network access.

    Access Server for AWS is a self-hosted VPN software that provides rapid deployment for secure remote access with a built-in web-based user interface for ease of use. Access Server provides an extra layer of security, with end-to-end encryption and granular access control to limit the risk of exposed data for remote users, site-to-site connectivity, or securing SaaS access and IoT devices. Certificate PKI management provides simplified installation and configuration. Additional features include balancing traffic across a cluster of Access Servers with DNS round robin and tunneling only your private traffic, optimizing your network bandwidth and making your environment more secure.

    Access Server for AWS technical support and onboarding is available 24/7. Schedule a demo at https://hs.openvpn.net/request-demo .

    OpenVPN client software accommodates Windows, macOS, Linux, Android, iOS, and ChromeOS environments. Includes a built-in local authentication system and support for authentication with Active Directory, PAM, LDAP, RADIUS, SAML, and even a custom Python3 authentication module is possible.

    Our subscription model is based on the number of concurrent connected devices. The tiered instance type comes in various sizes and is locked to the specific size. The cost for the software subscription for the chosen tier is charged directly through Amazon. This means these instances get a subscription automatically at launch and are suitable for automated launch and autoscaling scenarios.

    Highlights

    • This offering is locked to 5 connections. If you need the flexibility to scale, we recommend our PAYG listing instead: https://aws.amazon.com/marketplace/pp/prodview-f5qcwyw2gy256
    • A self-hosted scalable secure remote access, site-to-site VPN solution to give your employees the freedom to work securely with end-to-end encryption for accessing SaaS, the internet, and company resources. Essential security controls needed to evolve from a trusted-perimeter security model to an identity-based ZTNA approach.
    • OpenVPN client software that accommodates Windows, macOS, Linux, Android, iOS, and ChromeOS environments. Includes a built-in local authentication system and support for authentication with Active Directory, PAM, LDAP, RADIUS, SAML, and even a custom Python3 authentication module is possible.

    Details

    Delivery method

    Delivery option
    64-bit (x86) Amazon Machine Image (AMI)

    Latest version

    Operating system
    Ubuntu 24.04.4 LTS

    Deployed on AWS
    New

    Introducing multi-product solutions

    You can now purchase comprehensive solutions tailored to use cases and industries.

    Multi-product solutions

    Features and programs

    Buyer guide

    Gain valuable insights from real users who purchased this product, powered by PeerSpot.
    Buyer guide

    Financing for AWS Marketplace purchases

    AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
    Financing for AWS Marketplace purchases

    Pricing

    Free trial

    Try this product free for 7 days according to the free trial terms set by the vendor. Usage-based pricing is in effect for usage beyond the free trial terms. Your free trial gets automatically converted to a paid subscription when the trial ends, but may be canceled any time before that.

    OpenVPN Access Server (5 Connected Devices) / Self-Hosted VPN

     Info
    Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time. Alternatively, you can pay upfront for a contract, which typically covers your anticipated usage for the contract duration. Any usage beyond contract will incur additional usage-based costs.
    Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator  to estimate your infrastructure costs.
    If you are an AWS Free Tier customer with a free plan, you are eligible to subscribe to this offer. You can use free credits to cover the cost of eligible AWS infrastructure. See AWS Free Tier  for more details. If you created an AWS account before July 15th, 2025, and qualify for the Legacy AWS Free Tier, Amazon EC2 charges for Micro instances are free for up to 750 hours per month. See Legacy AWS Free Tier  for more details.

    Usage costs (530)

     Info
    • ...
    Dimension
    Cost/hour
    t3.small
    Recommended
    $0.096
    t2.micro
    $0.096
    t3.micro
    $0.096
    d3.8xlarge
    $0.096
    c5ad.xlarge
    $0.096
    c5n.18xlarge
    $0.096
    c5a.8xlarge
    $0.096
    c6i.12xlarge
    $0.096
    r5.metal
    $0.096
    c5ad.2xlarge
    $0.096

    Vendor refund policy

    Refunds are not provided, but you can cancel at any time.

    Custom pricing options

    Request a private offer to receive a custom quote.

    How can we make this page better?

    Tell us how we can improve this page, or report an issue with this product.
    Tell us how we can improve this page, or report an issue with this product.

    Legal

    Vendor terms and conditions

    Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .

    Content disclaimer

    Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

    Usage information

     Info

    Delivery details

    64-bit (x86) Amazon Machine Image (AMI)

    Amazon Machine Image (AMI)

    An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.

    Additional details

    Usage instructions

    For instructions on using the OpenVPN Access Server appliance on the AWS Marketplace, please visit https://openvpn.net/as-docs/aws-tiered.html 

    Support

    Vendor support

    For product activation to succeed your firewall and/or security group settings must allow connections to our online activation servers - details can be found in our FAQ section here: https://openvpn.net/aws-frequently-asked-questions/ . If you experience any problems, you can register for a free account on our website here: https://openvpn.net/support-for-aws/  and then open a support ticket so our technical team can assist you.

    AWS infrastructure support

    AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.

    Product comparison

     Info
    Updated weekly

    Accolades

     Info
    Top
    10
    In Device Connectivity, Network Infrastructure, Security
    Top
    100
    In Network Infrastructure, Security
    Top
    10
    In Continuous Integration and Continuous Delivery, Network Infrastructure, Security

    Customer reviews

     Info
    Sentiment is AI generated from actual customer reviews on AWS and G2
    Reviews
    Functionality
    Ease of use
    Customer service
    Cost effectiveness
    Positive reviews
    Mixed reviews
    Negative reviews

    Overview

     Info
    AI generated from product descriptions
    End-to-End Encryption
    Provides securely encrypted connections with end-to-end encryption for data transmitted over unsecured networks.
    Multi-Platform Client Support
    OpenVPN client software supports Windows, macOS, Linux, Android, iOS, and ChromeOS environments.
    Authentication Methods
    Supports multiple authentication mechanisms including local authentication, Active Directory, PAM, LDAP, RADIUS, SAML, and custom Python3 authentication modules.
    Granular Access Control
    Implements granular access control policies to limit risk of exposed data and enforce identity-based zero-trust network access.
    Certificate PKI Management
    Includes certificate-based Public Key Infrastructure management for simplified installation and configuration of VPN connections.
    Firewall and Threat Prevention
    Stateful packet inspection with GeoIP blocking, anti-spoofing, IDS/IPS, deep packet inspection, and application detection and blocking capabilities
    VPN Protocols and Connectivity
    Support for IPsec, OpenVPN, and WireGuard protocols with site-to-site and remote access VPN, high-availability tunnels, and authentication integration
    Routing and Traffic Management
    Policy-based routing with IPv4/IPv6 support, static routing, load balancing, reverse proxy, and high availability for TCP, HTTP, and HTTPS applications
    Network Services
    DNS, DHCP, dynamic DNS, DNS filtering, and PPPoE server capabilities for comprehensive network service delivery
    Centralized Management and Visibility
    Netgate Nexus platform providing multi-instance visibility, unified policy management, and scalable administration across multiple VPCs, regions, and hybrid on-premises deployments
    Zero Trust Network Access Architecture
    Cloud-native, unified, API-enabled solution implementing zero trust network access principles with explicit resource grant authorization
    Encrypted Network Segmentation
    One-to-one encrypted network segments created for each user to each resource location with granular access control
    Multi-Tunnel Connectivity
    Concurrent multi-tunnel secure access supporting connections to multi-cloud, on-premises, and legacy applications simultaneously
    Cross-Platform Device Support
    Secure access capability from managed and unmanaged devices across all makes and models
    Automated Access Management
    Automated access provisioning for multiple disparate environments eliminating manual approval workflows

    Contract

     Info
    Standard contract
    No
    No
    No

    Customer reviews

    Ratings and reviews

     Info
    4.5
    384 ratings
    5 star
    4 star
    3 star
    2 star
    1 star
    71%
    24%
    3%
    1%
    1%
    16 AWS reviews
    |
    368 external reviews
    External reviews are from G2  and PeerSpot .
    Mufaddal Mufaddal

    Secure access control has protected client platforms and supports reliable SLA commitments

    Reviewed on Jul 15, 2026
    Review provided by PeerSpot

    What is our primary use case?

    OpenVPN Access Server  is our main solution to ensure that the VPN is properly connected at the client's location so that they are able to access our system, as we have a platform for inventory invoice management.

    Just as there are typical firewalls in a system, such as Cloudflare  1.1.1.1, I use OpenVPN Access Server  to allow access from specific IPs and block access to specific IPs in my invoice management platform.

    How has it helped my organization?

    OpenVPN Access Server has positively impacted my organization by helping us design a reliable infrastructure and even providing definite SLA metrics to our clients.

    We have different SLA levels such as L0, L1, L2, and L3 in a typical IT scenario. Some clients need immediate access within 24 hours, while other clients, depending on their SLA levels, need support within one to two days. There are also some clients who are low priority and need support within five days or a week. This is how we organize our SLA structure. The high-priority clients who are hosted on our private server need immediate resolution, or a penalty is applied.

    What is most valuable?

    The best features OpenVPN Access Server offers are the secure access to the portal and the ability to stop irrelevant IPs from accessing our system.

    The secure access feature and blocking irrelevant IPs help my team on a day-to-day basis by protecting us. The unnecessary load on the servers is avoided in the first place. The regular backups that are taken are also easily available for our clients. Even the support team feels updated with all such features.

    What needs improvement?

    OpenVPN Access Server needs improvement as it requires definite marketing in the East Africa region so that many people have access to it. It should also be available offline and not always dependent on the internet. It should have AI-based observability metrics as well.

    From the user experience perspective, OpenVPN Access Server should be more user-friendly in the East Africa market where I am located. It should be easy to use and compliant with local norms. From the technical perspective, it should not be heavily dependent on the resources of the PC.

    For how long have I used the solution?

    I have been using OpenVPN Access Server for the past three years.

    How are customer service and support?

    Others who are looking to use OpenVPN Access Server should evaluate the proper feature benefits and costing as per their use cases.

    What other advice do I have?

    From the user experience perspective, OpenVPN Access Server should be more user-friendly in the East Africa market where I am located. It should be easy to use and compliant with local norms. From the technical perspective, it should not be heavily dependent on the resources of the PC.

    I found this interview to be good, but it can be improved with a more manual touch. My overall review rating for this product is 9 out of 10.

    Suzanne A.

    Flexible, Easy, and Secure Access to Windows Desktops and Apps

    Reviewed on Jul 12, 2026
    Review provided by G2
    What do you like best about the product?
    One of the things I like most is how it combines flexibility, ease of use, and strong security. It’s straightforward to connect and get a reliable connection, which makes it easy for both technical and non-technical teams to implement without issues. I also appreciate that it provides access to Windows desktops and applications.
    What do you dislike about the product?
    It offers customizable features and supports a wide range of operating systems and devices, which makes it an indispensable tool for businesses of all sizes.
    What problems is the product solving and how is that benefiting you?
    It’s an exceptionally secure solution for handling sensitive data. Its robust security measures—such as encryption and authentication protocols—help ensure a secure connection for remote access. It also has an unparalleled ability to bypass basic firewalls.
    Vishnu Narahari

    Secure remote access has streamlined our hybrid cloud workflows and reduced onboarding effort

    Reviewed on Jul 10, 2026
    Review from a verified AWS customer

    What is our primary use case?

    I use OpenVPN Access Server  as a VPN to access many of the applications. For example, I access a DataDog website where I monitor many tools and all, using OpenVPN Access Server .

    I have been using OpenVPN Access Server for about 12 to 13 months, and our main use is managing secure remote access for our internal teams and technical engineers who need to connect to our private cloud infrastructure and staging environments. We rely heavily on it to establish stable, secure connections so the team can access databases, internal applications, and server dashboards safely from anywhere.

    We use a hybrid cloud setup for our deployment of OpenVPN Access Server, which is hosted on virtual machines within our private cloud infrastructure to securely gatekeep our internal applications, main databases, and core staging environments.

    For public cloud resources in our hybrid setup, we primarily use AWS  and Microsoft Azure  to host several of our front-facing applications, customer portals, and some record testing environments. Having OpenVPN Access Server tied into this mix is great because it allows our team to securely hop between our internal private network and these public cloud resources without needing multiple different VPN clients or configuration setups.

    What is most valuable?

    OpenVPN Access Server offers a secure remote access VPN, web-based administration console, multi-factor authentication MFA support, integration with LDAP, Active Directory, RADIUS, SAML, centralized user and device management, client software for Windows, macOS and Linux OS, Android and iOS.

    The admin web UI is easily at the top of the list of best features, making managing user access and subnets incredibly simple without having to mess around with a command line. Another standout is the built-in client portal that lets users log in and download their own pre-configured profiles, saving the IT team a ton of manual setup. Additionally, it has a multi-factor authentication code that flexibly integrates with Active Directory and provides the enterprise-grade security we need.

    Overall, OpenVPN Access Server has positively impacted our organization by giving us a highly reliable, stable environment for remote work. We handle critical infrastructure and having a secure gateway that doesn't drop connections unexpectedly is a huge win. It has greatly improved our security posture without adding administrative headaches because our engineers and technical teams can securely connect to private cloud resources and databases from anywhere without a hitch, ensuring our support and operational workload runs smoothly around the clock.

    What needs improvement?

    The main area for improvement is the pricing model, as the concurrent user license gets expensive quickly as our organization grows. More flexible or tiered pricing options would be a huge plus. Another area is the configuration disconnect, where while the admin web UI handles about 90% of what we need, the moment we need deep advanced routing customizations or to tweak specific variables, we still have to drop back into the command-line interface to make those changes. It would be great to see these deeper configurations fully integrated into the web portal. Additionally, native support for newer, lighter protocols like WireGuard built straight into the platform alongside standard OpenVPN for better performance efficiency would be beneficial.

    For how long have I used the solution?

    I have been working in my current field for almost 15 to 15 plus years.

    What do I think about the stability of the solution?

    OpenVPN Access Server is very stable, and we have a hassle-free work experience using it.

    What do I think about the scalability of the solution?

    OpenVPN Access Server's scalability is much better, ensuring we can handle our growing needs.

    How are customer service and support?

    For customer support, I rate OpenVPN Access Server 9 out of 10. The ticketing system is responsive, and the technical team knows the product inside and out. Additionally, with such a massive community, we can almost always find immediate answers in their forum or documentation without needing to open a ticket. My advice is to map out your user access groups and routing subnets before configuring the server; this makes it easier to enforce least privilege.

    Which solution did I use previously and why did I switch?

    We previously relied on a legacy IPsec VPN solution and the standard open-source community edition of OpenVPN. We switched due to the administrative bottleneck, as managing the open-source version required our team to handle everything through the command-line interface, creating individual user configuration files to track down connection failures. It did not have a centralized dashboard or a user portal, which resulted in a massive number of internal support tickets. Moving to OpenVPN Access Server solved all of that by providing the web admin portal and seamless SAML integration, completely automating user management and relieving our administrators.

    What was our ROI?

    Regarding the return on investment from OpenVPN Access Server, it really comes down to the drastic drop in onboarding and engineering time. Before we implemented it, our senior technical staff had to spend 20 to 30 minutes per user manually generating cryptographic keys, setting up routing rules, and securely transferring profile files to each employee. This was a significant drain on highly skilled personnel, but now with our SAML identity provider integration, the entire workflow takes under two minutes. The platform automatically reads the user role and maps them to the correct network subnets instantly, saving us countless hours of administration overhead every month, allowing our engineering team to focus on managing critical infrastructure rather than grinding through access tickets. For us, that efficiency completely justifies our licensing cost.

    What's my experience with pricing, setup cost, and licensing?

    The pricing for OpenVPN Access Server is fine and very straightforward, and we did not face any hassles accessing it. The pricing, setup cost, and licensing were within our limits and budget, making it very user-friendly.

    Which other solutions did I evaluate?

    Before choosing OpenVPN Access Server, we evaluated other options, looking closely at WireGuard and Cisco AnyConnect. Cisco AnyConnect was a strong enterprise contender, but it felt overly complex for our hybrid cloud needs and required locking into their ecosystem, which we wanted to avoid. We valued WireGuard for its raw connection speed and lightweight protocol, but it lacked the necessary enterprise features including a built-in administrative web portal, straightforward SAML integration, and robust access control list. Ultimately, OpenVPN Access Server won out because it offered the ease of management and advanced user governance features we needed.

    What other advice do I have?

    If I had to give advice to others looking into using OpenVPN Access Server, my biggest recommendation is to carefully map out your user access groups and routing subnets on paper before diving into the configuration. The platform makes it incredibly easy to enforce least privilege and zero-trust principles, but the setup goes smoother if you have a clear architecture of who needs to access what private resources. Utilize the two free concurrent connections to test your identity provider integration, enforce multi-factor authentication, and provide the automation workflow during the testing phase to illustrate how much administrative time you will save, making it easier to justify the licensing cost when scaling up. I rate my overall experience with OpenVPN Access Server an 8 out of 10.

    Which deployment model are you using for this solution?

    Hybrid Cloud

    If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

    Tanay Mody

    Secure remote access has simplified user management and reduced support workload

    Reviewed on Jul 10, 2026
    Review provided by PeerSpot

    What is our primary use case?

    My main use case for OpenVPN Access Server  involves managing secure remote access for our internal teams and technical engineers who need to connect to our private cloud infrastructure. We rely heavily on established secure connections so the team can certainly access the database, internal applications, server dashboards, and the web admin UI makes it straightforward to manage user cases and integrates well with our existing authentication setup, which gives us significant time savings on the IT support side.

    A quick specific example of how my team uses OpenVPN Access Server  day to day includes the admin web UI being at the top of the list because it makes managing user access and subnets incredibly simple without having to use the command line. Another standout feature is the built-in client portal that allows users to log in and download their configured profile, saving our IT team considerable manual setup work. Lastly, the authentication flexibility helps us regularly, specifically how smoothly it integrates with our Active Directory and multifactor authentication, which enhances our IT support experience on a daily basis.

    How has it helped my organization?

    OpenVPN Access Server has positively impacted our organization by providing a high, reliable, stable environment, especially for remote work. We handle critical infrastructure, and having a secure gateway that does not drop connections unexpectedly is a huge win, greatly improving our security posture without adding administrative headaches, as engineers and technical teams can securely connect to private cloud resources and databases from anywhere without a hitch, ensuring that our operations workflow runs smoothly around the clock and offering total peace of mind regarding remote access security.

    Regarding specific outcomes, the clear impact of OpenVPN Access Server has been a massive drop in VPN-related support tickets. We previously handled profile issues, broken connections, and credential setups manually which used to be a daily headache for the IT team. Those tickets have now dropped by seventy percent to eighty percent, roughly because of the self-service client portal. It saves significant time on user onboarding as it used to take administration about twenty to thirty minutes to generate and securely send configuration files, but now, thanks to Active Directory integration, it takes hardly two to three minutes, resulting in considerable hours saved weekly and monthly.

    What is most valuable?

    The main feature of OpenVPN Access Server that stands out to me is the admin UI, and it is very well integrated with the Active Directory multifactor authentication, which provides the kind of enterprise-grade security we have been looking for, and we are very happy with that.

    The admin web UI makes managing user access and subnets incredibly simple without having to use the command line. Another standout feature is the built-in client portal that allows users to log in and download their configured profile, saving our IT team considerable manual setup work. The authentication flexibility helps us regularly, specifically how smoothly it integrates with our Active Directory and multifactor authentication.

    What needs improvement?

    The main area for OpenVPN Access Server improvement is its pricing model, as the concurrent user license gets expensive quickly as the organization grows, so more flexible pricing options would be a huge plus for AVIARC. Another area I would specify is the configuration disconnect, as the admin UI handles about ninety percent of what you need, but when it comes to advanced routing customization, tweaking specific variables requires dropping back into the command line interface. It would be great to see those deeper configurations integrated into the web portal for ease of use, along with support for newer, lighter protocols like WireGuard built straight into the platform for better performance and efficiency.

    For how long have I used the solution?

    I have been using OpenVPN Access Server for about three and a half to four years.

    What do I think about the stability of the solution?

    OpenVPN Access Server demonstrates absolute stability with no issues regarding its reliability, scalability, or other concerns.

    What do I think about the scalability of the solution?

    OpenVPN Access Server scales very well from a technical standpoint. You can easily upgrade the underlying hardware resources or spin up additional nodes in a cluster configuration to handle a massive surge in concurrent users. The only real constraint to its scalability is financial, as the concurrent user licensing model leads to expenses increasing quickly as you scale up to support larger teams, meaning while the software handles growth seamlessly, your budget is the main thing you need to plan around.

    How are customer service and support?

    I would rate customer support nine out of ten. The ticketing system is responsive, and the technical team knows the product inside and out. Moreover, due to the massive community around VPNs, you can almost always find immediate answers in their forum documentation without needing to open a ticket.

    How was the initial setup?

    Installing and setting up OpenVPN Access Server is very easy, especially compared to the community edition of OpenVPN. In our environment, we deployed it without a manual script or built-in installation from scratch, simply pulling a pre-configured image directly onto our virtual machine. The initial setup wizard guided us through core settings like admin password configuration and a primary network interface through the terminal, from where we immediately transitioned to the web UI to handle the rest of the configuration, which included setting up routing paths and subnets. It took less than an hour for the fully functional server to be up, which is a massive time-saver for our engineering team.

    What other advice do I have?

    My advice to others looking into using OpenVPN Access Server is to map out your user access groups and routing subnets before configuring the server, as the tool makes enforcing least privilege incredibly easy, but it is smoother with clearly defined access policies on paper first. I would also recommend taking full advantage of the two free concurrent connections to test out the SAML or Active Directory integrations completely before purchasing licenses, allowing you to prove the workflow and see how much time it can save your IT team before making a financial commitment. I would rate this product an eight out of ten overall.

    Djustin B.

    Easy to Use, Quiet in the Background, and Regularly Updated

    Reviewed on Jul 10, 2026
    Review provided by G2
    What do you like best about the product?
    I like that it offers a wide variety of countries to choose from for dedicated IP addresses, which lets us pick the best option for our specific use case. I also appreciate how easy it is to use, and that it runs quietly in the background while you work. On top of that, it’s great that the application is updated regularly, so it continues to improve with each update.
    What do you dislike about the product?
    OpenVPN is undoubtedly one of the best VPN services currently available. Another strong point is that their technical support is consistently available online to guide you and respond to any questions you may have.
    What problems is the product solving and how is that benefiting you?
    The number of available servers is excellent. When I use OpenVPN, I have real peace of mind knowing my IP address is protected, and I don’t worry about leaks or exposure. If my internet goes down and then comes back, this is the first application to reconnect, so my real IP address is never exposed.
    View all reviews