Overview
TurnKey with WireGuard® helps save you time and money by providing a ready-to-run WireGuard® VPN solution that is secure, supported and easy to maintain. The system auto-updates itself with security fixes and is built in a transparent 100% open source process free of hidden backdoors. WireGuard® is an extremely simple yet fast and modern VPN that utilizes state-of-the-art cryptography. It aims to be faster, simpler, leaner, and more useful than IPsec, while avoiding the massive headache. It intends to be considerably more performant than OpenVPN.
Note: WireGuard® and the "WireGuard" logo are registered trademarks of Jason A. Donenfeld. TurnKey Linux is not affiliated with Jason A. Donenfeld or WireGuard®. Neither this software appliance, or the TurnKey provided, custom configuration scripts are endorsed by Jason A. Donenfeld or WireGuard®.
Highlights
- Secure, supported and easy to maintain: auto-updated daily with latest security patches. Bundled support for no extra charge.
- Free from hidden backdoors and vendor lock-in: transparent 100% opensource build of Debian GNU/Linux with no proprietary components or secret sauce.
- Free 1-click backup, restore and migrate: bundled backup software saves changes to files, databases and package management to encrypted storage which servers can be automatically restored from.
Details
Typical total price
$0.033/hour
Pricing
Free trial
Instance type | Product cost/hour | EC2 cost/hour | Total/hour |
---|---|---|---|
t2.nano | $0.00 | $0.006 | $0.006 |
t2.micro AWS Free Tier | $0.01 | $0.012 | $0.022 |
t2.small Recommended | $0.01 | $0.023 | $0.033 |
t2.medium | $0.01 | $0.046 | $0.056 |
t2.large | $0.01 | $0.093 | $0.103 |
t2.xlarge | $0.01 | $0.186 | $0.196 |
t2.2xlarge | $0.01 | $0.371 | $0.381 |
t3.nano | $0.00 | $0.005 | $0.005 |
t3.micro AWS Free Tier | $0.01 | $0.01 | $0.02 |
t3.small | $0.01 | $0.021 | $0.031 |
Additional AWS infrastructure costs
Type | Cost |
---|---|
EBS General Purpose SSD (gp2) volumes | $0.10/per GB/month of provisioned storage |
Vendor refund policy
90 day "no questions asked" refund policy.
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Please see https://www.turnkeylinux.org/updates/wireguard for release notes.
Additional details
Usage instructions
System Initialization:
After creating an EC2 instance with 1-Click, browse to http://<Public_DNS>/ for system initialization instructions.
Alternatively, log in via SSH as user 'admin' to the running instance. Be sure to use the SSH keypair selected during launch.
This inital step is required to set sensitive passwords & install security updates. You may also be asked to set a domain name for your server. If this is required, then it must be a valid domain name (i.e. have DNS configured).
Accessing the software main web app
http://<Public_DNS>/
This may redirect to https and/or the domain set at initialisation.
OS commands via SSH
Log into the running instance via SSH as user 'admin', using the SSH keypair set at launch time. Use sudo to run commands requiring root access.
Web based System Admin control panel
https://<Public_DNS>:12321
Remove scary browser warnings
By default TurnKey AMIs ship with randomly generated self signed SSL/TLS certifcates. This will cause scary warning in your web browser When accessing https.
To remove the browser warnings, you will need to get a SSL/TLS certificate signed by an authorized Certificate Authority (CA). The recommended way to do that is to get a free Let's Encrypt SSL certificate. TurnKey comes with a built in tool to do that within your instance:
-
Ensure that you have your chosen domain DNS records configured and your domain resolves to your instance.
-
Access your instance via SSH.
-
Run 'sudo confconsole'.
-
Select:
Advanced >> Lets Encrypt >> Gen cert
For more info see: https://www.turnkeylinux.org/docs/confconsole
More info
For more info specific to this instance, visit the product homepage:
Support
Vendor support
Basic "getting started" type support when first starting, plus one free support incident per month. E-mail support is provided through the TurnKey Hub at no additional cost. Once you sign up to the TurnKey Hub, your AWS marketplace subscription will be automatically identified.
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Customer reviews
It does not work out of the box
Ironically this Turnkey AMI is not "turnkey" at all. I am not new to server deployment or AWS. I already have another Wireguard server setup.
Client connects but either no internet access or traffic is not tunneled through vpn.
I followed all their documentation, researched forum posts, github issues, etc in search of why it was not working as it should out of the box.
I recommend not wasting your time and just doing a manual deployment.