Hi, i’m looking for a VPN that:
- is easily deployable via a docker-compose
- has an Android App and it doesn’t drain the battery too much
- hides as regular HTTPS traffic so it’s not blockable by Firewalls. (I don’t need strong censorship resistance; it just has to work in offices and hotel WiFis.)
- Bonus: A server like caddy can also accept HTTPS traffic for some regular websites next to the VPN server.
https://github.com/TrustTunnel/TrustTunnel sounds interesting, but the PR for docker compose was closed.
Do you know something else?
My go to choice for this is ocserv to run a Cisco AnyConnect server, and sniproxy to sit on port 443 and handle traffic routing. You configure sniproxy to go to a different server by hostname, and configure ocserv as the fallback option to access the VPN. Any host I expose via sniproxy provides its own HTTPS certificate via my Traefik server.