Secure VPN Strategy

SallySensation

Distinguished
Dec 22, 2011
5
0
18,510
My network consists of a TP-link Archer C7 router and many different devices including smart TVs, laptops, PC, Mac, Android phones, Chromebook. I also run a server that hosts media and other documents that I access remotely. I am upgrading that to a QNAP TS-251+. I would like to secure my network as best as possible with minimal reduction in speed. We stream a lot from the internet, such as movies and TV through Netflix, and music through various services. We also run Plex. I'm getting overwhelmed by all the options for security. I'm hoping someone can suggest a good strategy.

My first thought was to host my own VPN, but that would only benefit me when using the internet in a remote location.

As far as securing my home network I would need to subscribe to a VPN service (I'm thinking PIA or StrongVPN -- maybe there are better suggestions).

It seems to me that connecting each device to this would be tedious, so it would be easier to use my router as the client. It looks like my router can do that, but the protocols are limited. There is no OpenVPN option which seems to be the most secure. I'm not sure PPTP is secure enough. I could also flash the router with OpenWRT to enable OpenVPN protocol, but I don't want this process to get to complicated and risk bricking my router.

Could I set up my server as a VPN client and server in order to route all of my traffic through it?

Can anyone suggest a simple and secure approach? Thanks in advance!
 
Solution
Not sure what you trying to secure. A vpn only secures the traffic between you and the VPN datacenter. Everything past that point is then exposed just as if you went to the sites directly from your house.

At most it protects your actual IP from being exposed to the remote server. For the vast majority of things you list it makes no difference. Some one with your IP address can't do much maybe rent botnets to do DoS attacks until they run out of money.

Most vpn is done to get around restrictions like your ISP blocks certain types of traffic or you want to access a server that is restricted to only certain countries. Of course one of the major uses is people trying to hide their IP when they are doing things they are not suppose...
Not sure what you trying to secure. A vpn only secures the traffic between you and the VPN datacenter. Everything past that point is then exposed just as if you went to the sites directly from your house.

At most it protects your actual IP from being exposed to the remote server. For the vast majority of things you list it makes no difference. Some one with your IP address can't do much maybe rent botnets to do DoS attacks until they run out of money.

Most vpn is done to get around restrictions like your ISP blocks certain types of traffic or you want to access a server that is restricted to only certain countries. Of course one of the major uses is people trying to hide their IP when they are doing things they are not suppose to.

If you main concern is the remote access of your server then hosting your own vpn service is the best solution to is. It would completely protect the server because you would only allow access via the vpn and vpn is very secure compared to almost any other option.
 
Solution