How to Use Your Low-Power VPS as a Dedicated IP VPN

You might have purchased a VPS during a promotional deal—perhaps something as enticing as $12/year—thinking it would be a great bargain for your hosting needs. However, over time, you might realize that the VPS is idling, with no clear use case of this vps. Instead of letting it sit unused, why not repurpose it into something practical and valuable, like a dedicated IP VPN?

Setting up your own VPN on the VPS allows you to host it yourself, providing complete control over your data and privacy. Unlike shared VPN services, a self-hosted VPN offers a static IP address, perfect for bypassing geo-restrictions, securely accessing work resources, or protecting your data while using public Wi-Fi. It’s also an excellent way to maximize the value of your VPS investment, turning an idle server into a powerful tool for enhanced online security and utility.

Plus, the process is cost-effective, as you’re leveraging resources you already own, and with detailed guides available, even beginners can easily set up their own VPN. So, if your VPS feels underutilized, converting it into a self-hosted VPN might just be the perfect solution to unlock its potential.

Using a low-power VPS (Virtual Private Server) as a dedicated IP VPN (Virtual Private Network) is an excellent way to enhance your online privacy, bypass geo-restrictions, and secure your internet connection. With a dedicated IP VPN, you gain full control over your VPN setup without relying on third-party providers. This guide will walk you through the entire process, even if you’re a beginner.

Table of Contents

What You’ll Need:

A VPS with low power specifications (e.g., 1-2 CPU cores, 1GB RAM, and at least 10GB storage).
SSH access to your VPS.
A basic understanding of terminal commands.
An OpenVPN or WireGuard-compatible client on your device.

Step 1: Set Up Your VPS

Log in to Your VPS:
- Use an SSH client (e.g., PuTTY for Windows or Terminal for macOS/Linux) to log into your VPS.
- Type: ssh root@your-vps-ip
- Replace your-vps-ip with the IP address of your VPS.
Update System Packages:
- Update your VPS’s software packages to ensure you’re using the latest versions: apt update && apt upgrade -y # For Ubuntu/Debian yum update -y # For CentOS
Install Essential Tools:
- Install tools like wget, curl, and nano (a text editor) for ease of use: apt install wget curl nano -y # Ubuntu/Debian yum install wget curl nano -y # CentOS

Step 2: Install a VPN Server

Option A: OpenVPN (Recommended for Beginners)

Install OpenVPN:
- Run the following script to set up OpenVPN easily: wget https://git.io/vpn -O openvpn-install.sh && bash openvpn-install.sh
Follow the Prompts:
- The script will guide you through:
  - Setting a custom port (default: 1194).
  - Choosing the DNS resolver (default options are fine).
  - Creating a client profile.
Save the Client Configuration File:
- The script will generate a .ovpn file (e.g., client.ovpn).
- Download it to your local machine using scp or by copying it from the VPS: scp root@your-vps-ip:/root/client.ovpn ./

Option B: WireGuard (Modern and Lightweight)

Install WireGuard:
- Use the following script for an easy installation: curl -O https://raw.githubusercontent.com/angristan/wireguard-install/master/wireguard-install.sh chmod +x wireguard-install.sh ./wireguard-install.sh
Follow the Prompts:
- The script will ask for:
  - Network interface (default: eth0).
  - Port (default: 51820).
  - DNS resolver.
  - Generating a client profile.
Save the Client Configuration File:
- Similar to OpenVPN, the script will generate a configuration file (e.g., client.conf).
- Transfer it to your local machine using scp or copy it from the VPS.

Step 3: Configure Your VPS Firewall

Allow VPN Traffic:
- For OpenVPN: ufw allow 1194/udp
- For WireGuard: ufw allow 51820/udp
Enable IP Forwarding:
- Open the sysctl.conf file: nano /etc/sysctl.conf
- Add or uncomment the following line: net.ipv4.ip_forward=1
- Apply the changes: sysctl -p
Set Up NAT (Network Address Translation):
- Configure your firewall to masquerade traffic: iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
- Save the iptables rules: apt install iptables-persistent -y netfilter-persistent save

Step 4: Connect to Your VPN

Install a VPN Client:
- Download an OpenVPN or WireGuard client on your device.
- Examples:
  - OpenVPN Connect (Windows, macOS, iOS, Android)
  - WireGuard App (Windows, macOS, Linux, iOS, Android)
Import the Configuration File:
- Open the client and import the .ovpn (OpenVPN) or .conf (WireGuard) file.
Connect to the VPN:
- Use the client to connect to your VPN server.
- Verify your connection by checking your IP address on a website like WhatIsMyIP.

Step 5: Secure Your VPN Server

Regularly Update Your Server:
- Keep your VPS updated to fix security vulnerabilities: apt update && apt upgrade -y
Set Up Fail2Ban:
- Protect your server from brute-force attacks: apt install fail2ban -y
Use SSH Key Authentication:
- Disable password-based SSH login and enable key-based authentication.
Monitor Logs:
- Check VPN logs to ensure everything is functioning correctly:
  - OpenVPN: tail -f /var/log/openvpn.log
  - WireGuard: wg show

Troubleshooting

Can’t Connect to the VPN?
- Check if the VPN server is running: systemctl status openvpn systemctl status wg-quick@wg0
Firewall Issues:
- Verify that the necessary ports are open: ufw status
Configuration Errors:
- Double-check the client configuration file for typos or incorrect IP addresses.

Congratulations! You’ve successfully turned your low-power VPS into a dedicated IP VPN. This setup allows you to enjoy enhanced privacy, secure browsing, and unrestricted internet access. Regular maintenance, such as updating your VPS and monitoring logs, will ensure your VPN server remains reliable and secure.