Difference between revisions of "Hosting a Gateway"

Jump to navigation Jump to search
Line 40: Line 40:
* Place .ovpn, userpass.txt (if applicable), and any certs in /etc/openvpn/
* Place .ovpn, userpass.txt (if applicable), and any certs in /etc/openvpn/
* Reboot
* Reboot
* sudo ip rule add from table 42
* Restart autoygg-server.service
* ip ro add default dev vpn0 table 42
* Connect via autoygg client
* Connect via autoygg client

Latest revision as of 18:21, 13 September 2020

This page documents the steps to set up your own gateway. Digitalocean's $5 VPS provides great value for this purpose.


  • Install packages `sudo apt install openvpn golang make`
  • Install yggdrasil and enable the service
  • Ensure peers are added to yggdrasil's config
  • Set yggdrasil's interface name to ygg0 in the config
  • Clone autoygg and checkout the desired version tag
  • `cd autoygg && make`
  • Copy autoygg-server to /bin/ and autoygg-server.service to /usr/lib/systemd/system/
  • `sudo systemctl daemon-reload`
  • Create /etc/autoygg/server/yml
ListenHost: "your-gateways-ygg-ip-from-yggdrasilctl-getSelf"
ListenPort: "8080"
GatewayOwner: "Your Name <you@provider.com>"
GatewayDescription: "Describe this gateway"
GatewayNetwork: "Mullvad VPN"
GatewayLocation: "New York, US"
RequireRegistration: true
AccessListEnabled: false
GatewayTunnelIP: ""
GatewayTunnelNetmask: "16"
MaxClients: 100
YggdrasilInterface: ygg0
FirewallWanInterface: vpn0
GatewayInfoURL: ""
  • Enable / start the autoygg-server service
  • Edit your .ovpn config, remove up/down:
dev vpn0
dev-type tun
  • Place .ovpn, userpass.txt (if applicable), and any certs in /etc/openvpn/
  • Reboot
  • Restart autoygg-server.service
  • Connect via autoygg client