Overview
TurnKey VPN - built on open source OpenVPN® Community Edition helps save you time and money by providing a ready-to-run OpenVPN® solution that is secure, supported and easy to maintain. The system auto-updates itself with security fixes and is built in a transparent 100% open source process free of hidden backdoors.
OpenVPN® Community Edition provides a full-featured open source SSL/TLS Virtual Private Network (VPN). TurnKey VPN leverages the open source 'openvpn-server', 'openvpn-client' and 'easy-rsa' software (developed by OpenVPN® Inc.) to support 'site-to-site' or 'gateway' access.
'Site-to-site' can link 2 otherwise unconnected LANs; suitable for multi-site enterprise networks &/or linkage to an Amazon VPC. 'Gateway' configuration can secure traffic across public and/or insecure wifi connections and/or provide a secure solution for remote work scenarios.
Note: OpenVPN® is a registered trademark of OpenVPN® Inc. Neither TurnKey GNU/Linux nor this software appliance are affiliated with or endorsed by OpenVPN® Inc.
Highlights
- Secure, supported and easy to maintain: auto-updated daily with latest security patches. Bundled support for no extra charge.
- Free from hidden backdoors and vendor lock-in: transparent 100% opensource build of Debian GNU/Linux with no proprietary components or secret sauce.
- Free 1-click backup, restore and migrate: bundled backup software saves changes to files, databases and package management to encrypted storage which servers can be automatically restored from.
Details
Features and programs
Financing for AWS Marketplace purchases
Pricing
Dimension | Cost/hour |
---|---|
t2.small Recommended | $0.02 |
t2.micro AWS Free Tier | $0.02 |
c3.xlarge | $0.02 |
c4.xlarge | $0.02 |
d2.xlarge | $0.02 |
t2.medium | $0.02 |
t2.nano | $0.00 |
m4.10xlarge | $0.02 |
i2.xlarge | $0.02 |
r3.2xlarge | $0.02 |
Vendor refund policy
90 day money back guarantee if you are not fully satisfied.
How can we make this page better?
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Please see https://www.turnkeylinux.org/updates/openvpn for release notes.
Additional details
Usage instructions
System Initialization:
After creating an EC2 instance with 1-Click, browse to http://<Public_DNS>/ for system initialization instructions.
Alternatively, log in via SSH as user 'admin' to the running instance. Be sure to use the SSH keypair selected during launch.
This inital step is required to set sensitive passwords & install security updates. You may also be asked to set a domain name for your server. If this is required, then it must be a valid domain name (i.e. have DNS configured).
Accessing the software main web app
http://<Public_DNS>/
This may redirect to https and/or the domain set at initialisation.
OS commands via SSH
Log into the running instance via SSH as user 'admin', using the SSH keypair set at launch time. Use sudo to run commands requiring root access.
Web based System Admin control panel
https://<Public_DNS>:12321
Remove scary browser warnings
By default TurnKey AMIs ship with randomly generated self signed SSL/TLS certifcates. This will cause scary warning in your web browser When accessing https.
To remove the browser warnings, you will need to get a SSL/TLS certificate signed by an authorized Certificate Authority (CA). The recommended way to do that is to get a free Let's Encrypt SSL certificate. TurnKey comes with a built in tool to do that within your instance:
-
Ensure that you have your chosen domain DNS records configured and your domain resolves to your instance.
-
Access your instance via SSH.
-
Run 'sudo confconsole'.
-
Select:
Advanced >> Lets Encrypt >> Gen cert
For more info see: https://www.turnkeylinux.org/docs/confconsole
More info
For more info specific to this instance, visit the product homepage:
Support
Vendor support
E-mail support is provided through the TurnKey Hub at no additional cost. Once you sign up to the TurnKey Hub, your AWS marketplace subscription will be automatically identified. https://hub.turnkeylinux.org/ support@turnkeylinux.org
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Standard contract
Customer reviews
Works by fixing server.conf
After a fresh install, when you generate the client profile, you normally get timeouts. For this to fix, add the following lines in your server.conf file which is located as /etc/openvpn/server.conf,
The lines are,
cipher AES-256-CBC
auth SHA256
After adding these lines, restart the openvpn servive by using,
systemctl restart openvpn
Also, reboot the instance for any unknown changes to be applied.
Easy to use and protects the internal infrastructure of users
What is most valuable?
We use the solution to connect to our internal infrastructure in our data center. We also use it to run our virtual machines on servers protected by OpenVPN in the internal network. The solution's connection is very fast, and I don't have any problems with its speed.
What needs improvement?
I would like to get less updates from the solution.
For how long have I used the solution?
I have been using the solution for a couple of years.
What do I think about the stability of the solution?
I rate the solution ten out of ten for stability.
What do I think about the scalability of the solution?
Around 50 users are using the solution in our organization.
How was the initial setup?
The solution’s initial setup is easy.
What about the implementation team?
The solution can be deployed easily within a few minutes.
What was our ROI?
The solution is easy to use and doesn't need to be maintained daily.
What other advice do I have?
We have one system administrator who maintains this product on the server side. OpenVPN Community Edition is small, convenient for our purposes, and works fine. I would recommend the solution to other users who want to protect their internal infrastructure because it is not a complex product and doesn't require many people to manage it.
Overall, I rate the solution ten out of ten.
Which deployment model are you using for this solution?
Offers a user-friendly UI and remote access of PCs to users
How has it helped my organization?
The benefit experienced by my company from the product's use stems from the fact that the solution allows us to have the convenience of remotely using company PCs.
What is most valuable?
The most valuable features of the solution are its stability and user-friendly UI.
What needs improvement?
The product's initial setup phase is not straightforward, making it an area where improvements are required.
For how long have I used the solution?
I have experience with OpenVPN Community Edition - powered by TurnKey .
What do I think about the stability of the solution?
The stability in the connections provided by the product is good.
Stability-wise, I rate the solution a seven to eight out of ten.
What do I think about the scalability of the solution?
There are around 100 end users of the solution in my company.
There are plans to increase the use of the solution in my company, especially to help people who want to connect remotely with their company's PCs.
How are customer service and support?
I would only contact the technical support team if my account is being deleted.
How was the initial setup?
The product's initial setup phase was a little bit complex because there was a need to work on the configuration part.
For the deployment process, you need access to an executable file, which can be a .ASA file, along with a configuration file to edit. When you open the application, you have to put in the config file in the software and then run it to make it work.
The solution is deployed on an on-premises model.
The solution can be deployed in a few hours. If you have some assistance from the IT service or IT team, the deployment can be done within a few hours.
What about the implementation team?
I take care of the deployment process with the help of the product's documents.
What other advice do I have?
I use the product on my PC in the company for remote access.
I am not sure whether the product has enhanced data security in my company, but I use OpenVPN Community Edition - powered by TurnKey , whenever I need access to the PCs in my company to work remotely.
Speaking about how the encryption technology in the product meets our company's privacy requirements, I would say that I think it depends on the policy of the organization, about which I don't really know much.
I would tell those who plan to use the product that it is one of the popular software solutions.
The product is very good in terms of reliability and the performance offered to its users.
I rate the tool an eight out of ten.
Which deployment model are you using for this solution?
Works in 2022
This is not as easy as the official OpenVPN AMI but it is much easier than rolling an image your self.
The instructions at Github leave something to be desired, but if you're setting up a VPN into an AWS VPC you can use the instructions here https://aws.amazon.com/marketplace/pp/prodview-vtdzptnsownow?ref=cns_srchrow#pdp-overview to get it up and running.
Doesn't workk
The first step of instructions don't work as the server seems to be completely unreachable. Can't ssh into it using cert nominated in setup.