Wireguard jobs
...OpenVPN (TCP & UDP), WireGuard, L2TP, and an HTTPS Proxy mode must be selectable per server or globally. Switching protocols should not force users to re-enter credentials. Deliverables 1. Store-ready builds: APK, TestFlight IPA, and a Windows installer 2. Complete, well-commented source code with build instructions 3. Lightweight branded UI (logo, colour palette, icons) 4. Admin guide explaining how to add or retire servers, edit DNS defaults, and trigger app updates 5. Two-week post-delivery bug-fix window Acceptance criteria The app connects on every listed protocol, maintains the tunnel through sleep/roam events, enforces the kill switch, and displays accurate ping values. Leak tests (IP, DNS, WebRTC) must all pass. If your previous work already integrates W...
This project aims to resolve the calculation error of bandwidth peers due to potential packet fragmentation, an updated MTU and flush of current peer usage logs as well as post configuration changes tests with a 1GB size file will be performed.
***just with guarantee to connect from iran internet*** I have a fresh dedicated server and need it turned into a rock-solid VPN that survives the toughest filtering now seen on the Iranian network. I am open on the protocol itself—OpenVPN with strong obfuscation, WireGuard with a stealth layer, even a well-hardened L2TP/IPsec stack—so long as the final solution keeps working when ordinary connections are throttled or blocked. The key target is smartphones, so I want mobile-friendly client files or apps that connect out of the box, plus clear instructions I can pass to less-technical users. DNS leak protection, packet-size randomisation, and an option to rotate ports automatically would be ideal touches. Deliverables • Full server-side installation and harde...
...i have other devices in the area which have no internet and looking to connect them to the internet, how i can do that securly, i have a cable to connect the router to the mikrotik on ether2 The router have static ip address details as below( APN Name: IP Address: Subnet Mask: Default Gateway: DNS Server: ) I have also mullvap vpn wireguard details and the devices want to connect it will use lt2p and openvpn and they are on different network thatn the router but in the same area that have no internet but they can ping the router, the router is provided by ISP in area that have no internet, the router have static ip address to allow user connected on other devices without interruption as if it was not static ip address the IP address
I am experiencing a DNS resolution issue when connected through a WireGuard VPN hosted behind a UniFi UDM SE. Environment: VPN: WireGuard (configured on UniFi UDM SE) Client: WireGuard (latest version) Internal DNS server: (Active Directory / Windows Server DNS) Current behavior: The VPN connection is successfully established. I can access the internet without any issue through the VPN. I can ping and reach all internal network devices using their IP addresses. However, I am unable to resolve or ping hostnames of machines on the internal network. Example: ping → OK ping server-name → Failed (name not resolved) Additional details: The DNS server configured in the WireGuard client is correctly set to: The DNS server is reachable over the VPN (...
...connection experience (maximum simplicity) • Smart server selection and connection optimization • High security without user-facing complexity ⸻ Target Platforms • iOS (App Store) • Android (Google Play) • Windows • macOS • tvOS • Web-based administrative dashboard ⸻ Key Technical Features ⸻ 1. VPN Core Engine • Primary p...
My KVM VPS is already running Ubuntu and I now need a rock-solid WireGuard installation on it. I want to be certain that the tunnel comes up every time the server reboots, routes traffic correctly, and maintains full privacy. Once you finish, I also need a concise, step-by-step guide so I can reproduce the setup on future machines and quickly troubleshoot if something goes wrong. Scope of work • Install and configure the latest stable WireGuard on the Ubuntu VPS. • Enable autostart, IPv4/IPv6 forwarding, and basic firewall rules so the interface survives kernel upgrades and reboots. • Supply at least one working client profile (wg-quick format) that I can import into a desktop or mobile device and connect immediately. • Produce a short document co...
I’d like WireGuard installed on my Ubuntu server together with a lightweight, browser-based GUI so I can create and revoke peers without touching the command line. The box is a clean Ubuntu instance with full root access waiting for you. What I need from you • Install the latest stable WireGuard kernel module and tools • Deploy a GUI front-end (wg-dashboard, wg-ui, or any open-source alternative you recommend) • Generate one initial client profile and verify connectivity end-to-end • Harden the configuration (IP-forwarding, firewall rules, service autostart) • Provide a brief README noting every command or setting you changed Acceptance The tunnel must come up from my test laptop, the GUI must list peers and allow new keys to be ...
...technique in use, and clearly document the mechanics in plain language. • Show me how to replicate the same approach on my own infrastructure (VPS or residential tunnel—whichever the method requires). I’d like a step-by-step deployment guide plus ready-to-import config files. • Produce working client profiles for the major platforms I rely on—Windows, Android, and ideally a generic OpenVPN/wireguard/outline or similar build so I can adapt it to other devices later. • Validate the solution by demonstrating a stable connection from inside Iran (I can help test) with speeds comparable to the original profile and with deep-packet-inspection evasion intact. For transparency: I’m only after uncensored, secure access to information; no illeg...
I need an expert to set up a fully working WireGuard VPN on my OVH VPS. Requirements: - The server must use a France IP located in Roubaix (OVH France). - Configure WireGuard properly with stable performance. - Use a suitable port that works reliably for international connections. - Ensure the VPN works well for users connecting from restricted networks. - Set up multiple clients and provide configuration files or QR codes for easy connection. - Make sure firewall, IP forwarding, and routing are correctly configured. The goal is to have a stable and reliable VPN connection through my OVH server in France.
I’m putting together a small ARR stack in Docker and need an expert to wire everything so that every outbound request from Prowler and Radar is forced through a Gluetun VPN container. My host is already running Docker on Linux; what I’m missing is a clean, reproducible Compose (or Swarm) setup that: • Spins up Gluetun first, using my WireGuard credentials and built-in kill-switch. • Launches Prowler and Radar as separate services but attaches them to the Gluetun network so they inherit its VPN tunnel for all traffic. • Exposes only the essential web UI ports on the host while keeping search, tracker and metadata queries safely behind the tunnel. • Survives restarts with proper health-checks and dependencies so nothing leaks when the VPN drops...
...to the shopping cart. • Full setup – install and configure the VPN on the home unit, flash/configure the travel router, and hand me clear, copy-paste-ready instructions for connecting both my laptops/desktops and my iOS/Android phones. Secure browsing is the main goal, so strong encryption, a clean firewall policy, and DNS leak protection are mandatory. I’m flexible on protocol; if OpenVPN, WireGuard, or another option suits the hardware better, explain why and go with it. Once everything is up, we’ll run a live test while I’m on a public Wi-Fi network to confirm that all traffic routes through the tunnel and that speeds stay reasonable. Deliverables 1. Shopping list with purchase links and brief justification for each component 2. Step-by-ste...
...Hardware chain configuration MacBook Pro → OBS stream over Internet → Windows mini PC receives stream → HDMI output from mini PC → UGREEN HDMI capture card → USB connection to secure laptop → Appears as webcam in Microsoft Teams and browser applications Network configuration Freelancer may choose the best method, including • Direct IP with port forwarding • VPN solution such as Tailscale or WireGuard • SRT secure streaming • Alternative reliable low latency solution ──────────────────────── Current issues ──────────────────────── OBS stream fails to connect reliably Port forwarding not configured yet Unsure which protocol is most reliable Need lowest possible latency Need clean HDMI output compatible with capture card ────────...
The Ubiquiti EdgeRouter 4 at this location already has WireGuard installed and roughly 90 % of the configuration in place. I need the last pieces completed so our Windows-based clients can log in remotely and reach the LAN without issues. Here is what remains: • Review the current EdgeOS configuration, tidy up any incomplete firewall/NAT or routing entries and enable the WireGuard interface. • Generate and supply at least one working Windows client profile (.conf or QR) that I can replicate for additional users. • Test end-to-end connectivity with me, confirming LAN access and internet break-out perform as expected. • Provide a short change log so I can repeat the steps in the future. SSH and GUI access can be arranged at an agreed time; please pl...
...Implement strong, current best-practice cipher configurations • Configure secure SSL/TLS settings on load balancers/web servers • Validation: SSL Labs assessment showing improved security grade 5. Admin Portal Access Control (OPTIONL) • Task Type: Network security implementation • Requirement: Secure admin portal access behind VPN or equivalent protection • Options: • VPN implementation (OpenVPN, WireGuard, or cloud-native solutions) • IP allowlisting with proper access controls • Zero-trust network access implementation • Deliverable: Secure access solution with documented procedures 6. Open Ports Security Audit • Task Type: Network security assessment and hardening • Requirement: Review and secure network port exposure &bul...
...what’s missing is a clean, production-ready configuration. Here’s what I expect: • Install and update the latest stable Proxmox VE • Create 4–10 Linux VMs (Ubuntu preferred unless you suggest a better fit) with optimized CPU, RAM and storage allocations • Configure secure networking so each VM can reach the internet while remaining isolated from one another, and set up a reliable tunnel (WireGuard is ideal) for remote administration • Apply basic hardening: user roles, firewall rules, backups to an external target, and monitoring alerts • Provide concise documentation or a short call showing me how to add, clone, back up and restore VMs on my own All tasks should be completed using Proxmox’s native tools and standard bes...
...Encrypt, file versioning, sharing links • Sync client tested on my MacBook • API access enabled for future AI integration 4. DOCKER INFRASTRUCTURE • Docker Engine + Compose + Portainer • Clean project structure, isolated networks per service • Watchtower, health checks, log rotation • Well-commented Compose files, extensible for AI containers 5. NETWORKING & VPN • Tailscale mesh networking • WireGuard VPN (Dockerized) • Connect to my cloud server • Firewall hardening (Docker-aware) • Wake-on-LAN if supported 6. 5 DOMAINS • Dockerized reverse proxy (Nginx Proxy Manager/Traefik/Caddy) • Auto SSL, all 5 domains routed • Easy to extend for future AI endpoints 7. KALI LINUX • Kali metapackages on host +...
...Implement strong, current best-practice cipher configurations • Configure secure SSL/TLS settings on load balancers/web servers • Validation: SSL Labs assessment showing improved security grade 5. Admin Portal Access Control (OPTIONL) • Task Type: Network security implementation • Requirement: Secure admin portal access behind VPN or equivalent protection • Options: • VPN implementation (OpenVPN, WireGuard, or cloud-native solutions) • IP allowlisting with proper access controls • Zero-trust network access implementation • Deliverable: Secure access solution with documented procedures 6. Open Ports Security Audit • Task Type: Network security assessment and hardening • Requirement: Review and secure network port exposure &bul...
...functional Remote Access VPN that my team and I can log into from anywhere without relying on third-party subscription services. Your solution must work on the following: • Devices: Desktop, Mobile, Tablet • Operating systems: Windows, macOS Scope – Spin up and harden the VPN server (any reliable cloud provider or bare-metal host I supply). – Configure a modern, open-source protocol such as WireGuard, IKEv2, or OpenVPN with strong encryption. – Generate client profiles/installers so that connecting is a one-click experience on the platforms listed above. – Provide clear step-by-step deployment and maintenance documentation so I can recreate or scale the setup later. Acceptance Criteria 1. I can import or run the client configuration ...
...role-based access to our network resources. Scope of Work: UniFi Identity Setup: Configure UniFi Identity (UID) on our UniFi Cloud Gateway. User Migration/Creation: Assist in migrating existing users or setting up a new user directory within UniFi Identity. Authentication Replacement: Set up One-Click WiFi (Radius-less or WPA-Enterprise) using UniFi Identity credentials. Set up One-Click VPN (WireGuard or L2TP) for remote staff, replacing AD-integrated VPNs. Role-Based Access (RBAC): Configure Groups and Roles to ensure users only have access to specific VLANs or resources based on their department. Device Integration: Ensure Windows/macOS endpoints can connect to the network using the new identity-based credentials. Documentation: Provide a brief SOP (Standard Operating Proce...
A site-to-site WireGuard tunnel between my MikroTik (RouterOS v7) router and an Ubuntu VPS is already handshaking. From the MikroTik side I can ping the VPS, yet the return traffic never finds its way back—so the problem clearly sits on the Ubuntu VPS’s routing table or policy rules. What I need • Identify exactly why the VPS is dropping or mis-routing packets coming from the MikroTik peer. • Add or adjust the required route / policy rule so traffic flows symmetrically. • Validate success with bidirectional ping, traceroute and a quick real-world service test. Environment details • MikroTik RouterOS v7, WireGuard interface already configured and working one-way. • Ubuntu VPS (recent LTS) running the other WireGuard peer....
I need two home office computers to be able to ping each other. Both computers are at different location, on different networks and both are windows machines. Project will only be considered as complete one BOTH COMPUTERS CAN PING EACH OTHER. WireGuard will be preferred but not required.
...federation-ready system. STAGE 5 – DOCUMENTATION AND HANDOVER Full technical documentation Deployment and rollback guides Final QA and bug fixes Developer handover Outcome: Production-ready system with clear documentation. REQUIRED EXPERIENCE You must have strong, demonstrable experience with: Linux server administration OpenWrt FreeRADIUS (including realms and proxying) VPNs (OpenVPN or WireGuard) REST APIs PHP backend development Perfex CRM module development Experience with hotspot systems, ISPs, or campus Wi-Fi networks is a strong advantage. IMPORTANT CONSTRAINTS No modification of Perfex CRM core code No modification of OpenWISP core code All extensions must be upgrade-safe Clean separation between network layer and business logic DELIVERABLES W...
I need technical expertise to implement limited remote access for 3 staff members. They will be using PCs, laptops, iMacs, and iPads to access a MacMini running an Adobe Acrobat-based record-keeping system. Requirements: - Set up WireGuard ? for remote access - Configure limited access permissions - Ensure compatibility across Windows, macOS, and iOS devices Ideal Skills and Experience: - Experience with WireGuard - Knowledge of remote access setups across multiple OS - Familiarity with Adobe Acrobat and MacMini configurations - Strong troubleshooting skills Please provide a detailed plan and timeline for implementation.
...suites • Implement strong, current best-practice cipher configurations • Configure secure SSL/TLS settings on load balancers/web servers • Validation: SSL Labs assessment showing improved security grade 5. Admin Portal Access Control • Task Type: Network security implementation • Requirement: Secure admin portal access behind VPN or equivalent protection • Options: • VPN implementation (OpenVPN, WireGuard, or cloud-native solutions) • IP allowlisting with proper access controls • Zero-trust network access implementation • Deliverable: Secure access solution with documented procedures 6. Open Ports Security Audit • Task Type: Network security assessment and hardening • Requirement: Review and secure network port exposure ...
...suites • Implement strong, current best-practice cipher configurations • Configure secure SSL/TLS settings on load balancers/web servers • Validation: SSL Labs assessment showing improved security grade 5. Admin Portal Access Control • Task Type: Network security implementation • Requirement: Secure admin portal access behind VPN or equivalent protection • Options: • VPN implementation (OpenVPN, WireGuard, or cloud-native solutions) • IP allowlisting with proper access controls • Zero-trust network access implementation • Deliverable: Secure access solution with documented procedures 6. Open Ports Security Audit • Task Type: Network security assessment and hardening • Requirement: Review and secure network port exposure ...
I run a Windows Server 2022 instance on IONOS Cloud and need a reliable WireGuard VPN configured for roughly twenty concurrent users. The machine already runs a few other small services, so the VPN must coexist cleanly without opening unnecessary ports or weakening overall security. I’m comfortable with the standard L2TP/IPsec stack but haven’t decided whether we should tweak any of the underlying security parameters (cipher suites, certificate handling, user-auth back-end, etc.). I’d appreciate your guidance on best-practice hardening that still keeps user onboarding straightforward. Once the tunnel is live I’ll need: • User accounts (or a clearly documented template) for up to 20 people • A short PDF or markdown guide showing Windows, macOS, iOS a...
My VPN will not connect at all on my Linux computer. Credentials are correct, but every attempt stalls before the tunnel is established. I’m working from the standard NetworkManager GUI and, under the hood, OpenVPN is the current protocol; WireGuard is also available if it proves easier to debug. I’d like you to isolate the root cause (logs, routing tables, iptables rules, DNS, MTU—whatever it turns out to be), apply the necessary fixes, and leave the system in a state where the VPN connects reliably and survives a reboot. Deliverables • A stable, working VPN connection on this Linux machine • A concise write-up of what went wrong and the exact commands or configuration changes you applied I will confirm completion by reconnecting after a reboo...
...achieve regarding **remote access using WireGuard**. --- ### 1. Current Situation I have: * A **central server (VPS or main router)** running **WireGuard** * A **MikroTik router** at the site * Multiple **Ubiquiti and Mimosa devices** (sectors, CPEs, PtP links) These devices are **connected behind the MikroTik** (same LAN or VLANs) --- ### 2. Goal My goal is to use **WireGuard as a secure remote access tunnel** that allows me to: * Access the **MikroTik router** remotely (Winbox, SSH, WebFig) * Access **Ubiquiti & Mimosa devices** behind the MikroTik * Do all management **without exposing public IPs** or opening multiple ports --- ### 3. Desired Architecture * The **WireGuard server** acts as a central hub * MikroTik connects to it as a **...
...Switch. Monetization: Must integrate AdMob (Banner, Interstitial, Native) and In-App Purchases (Subscriptions). Browser Extension: Must work on Chrome, Edge, and Firefox. Must share the same user database/authentication as the mobile app. Admin Panel: Web-based dashboard to manage servers, view active users, and manage subscriptions. Backend/Server: Please recommend the best VPN protocol (WireGuard, OpenVPN, V2Ray, etc.) for speed and security. Critical Requirement: Source Code & Handover We will handle the actual publishing to the App Store, Google Play, and Web Stores using our own developer accounts. Therefore, the final delivery must include: 100% Source Code: Clean, organized, and unencrypted. Documentation: A comprehensive guide on how to compile the code, ge...
...I’m using ZeroTier installed directly on each Windows VM, but I’m running into reliability issues — especially after VM reboots, where clients sometimes can’t reconnect. I’m looking for an experienced sysadmin / DevOps / virtualization engineer who can: • Review my current setup • Recommend a secure, stable client-access architecture (e.g. RD Gateway, VPN gateway, bastion host, Guacamole, WireGuard, etc.) • Help design or implement a solution where: • Windows VMs are not publicly exposed • Clients don’t get locked out after reboots • Access is simple for non-technical users (ideally no client-side VPN) • Optionally advise on client control panels / automation, such as: • VM restart buttons &bull...
I am launching a new cross-platform VPN that has to stand shoulder-to-shoulder with NordVPN, ExpressVPN and the rest of the current market leaders. The finished product will ship as two native clients—one for Google Play, one for the App Store—built on the same secure core. Security is non-negotiable: the tunnel must run AES-256 with WireGuard, enforce a true No-Logs policy and expose a Kill Switch. On performance, I expect consistently high speeds and smart routing logic that automatically selects the fastest exit without user input. From the first launch the experience needs to feel effortless: one-tap connect, a clean, modern UI in line with the guidelines at , and an auto-reconnect that silently restores protection after any drop. To differentiate, I also want
...selector for multiple server locations, and a smart auto-connect that triggers on startup or whenever the device joins an unsecured network. User access must be protected, so you’ll wire in a secure authentication flow (email-password or token-based—whichever you’ve proven most stable) and keep the session management lightweight to minimise battery impact. You’re free to leverage OpenVPN, WireGuard or your preferred tunnelling library so long as the final APK passes Android 13 requirements and Play Store VPN permissions. The codebase should be 100 % Kotlin, structured for future modular expansion and covered by basic unit tests for the networking layer. Deliverable: a production-ready Android Studio project, signed debug APK, and a brief setup/rea...
I am launching a new cross-platform VPN that has to stand shoulder-to-shoulder with NordVPN, ExpressVPN and the rest of the current market leaders. The finished product will ship as two native clients—one for Google Play, one for the App Store—built on the same secure core. Security is non-negotiable: the tunnel must run AES-256 with WireGuard, enforce a true No-Logs policy and expose a Kill Switch. On performance, I expect consistently high speeds and smart routing logic that automatically selects the fastest exit without user input. From the first launch the experience needs to feel effortless: one-tap connect, a clean, modern UI in line with the guidelines at , and an auto-reconnect that silently restores protection after any drop. To differentiate, I also want
I'd like someone to investigate and attempt to resolve the issue with tailscale tun networking on NetBSD. There is an existing pkgsrc tailscale client, which runs under NetBSD but only with userspace-networking, not full tun networking. It will start up, connect to the tailnet and allow listing host...package, or to standalone tailscale code) Working tailscale would also unlock the first milestone, so no need to provide details of what was tried in that case. First milestone is a fallback to provide some payment if attempt is unsuccessful. This is a repost of a previous "Package Tailscale Client for NetBSD" project which did not have correctly stated goals. note - there is also a pkgsrc wireguard-go package which has working tun networking on NetBSD, which may p...
...celebrate having Tailscale one command away for every NetBSD user. To clarify: The final goal is to have a working tailscale package on NetBSD in pkgsrc, but for this project a pkgsrc-wip package with any necessary patches would be fine. There is a pkgsrc wireguard package which works fine on NetBSD, so the underlying tech should be good, but for some reason tailscale does not currently work with tun networking on NetBSD. The tailscale userspace-networking seems to work fine So it may involve some back and forth between the wireguard and tailscale packages, and poking at golang networking config...
I have a Raspberry Pi already running WireGuard, but the service still needs to be fully configured so it can shield my entire home network. My goal is to route every device on the LAN—phones, laptops, smart-TVs, IoT hubs, the works—through a single, rock-solid WireGuard tunnel for outbound traffic and for secure remote access when I’m away. The Pi is up, SSH is enabled, and WireGuard packages are present; what’s missing are the peer keys, proper , IP forwarding rules, firewall tweaks (iptables / nftables), and the final verification that traffic from any local client truly exits only through the encrypted interface. I’d also like a brief walkthrough on adding future peers so I’m not stuck each time a new gadget joins the house. Wh...
...Design: Propose the most suitable technical solution (e.g., SSH tunnel, VPN, SOCKS proxy) to achieve the IP masking. Implementation: Option A (Preferred): Set up a secure SSH tunnel (local/remote port forwarding) from a whitelisted server (e.g., a cloud instance like AWS EC2, DigitalOcean Droplet, or a physical server I control) to my local machine. Option B: Configure a VPN (e.g., using OpenVPN or WireGuard) on a whitelisted server to route my traffic through it. The chosen solution must provide a stable and encrypted connection. Configuration & Testing: Fully configure the chosen method on both the server and my local machine (Windows/macOS/Linux). Test the connection to ensure my public IP correctly appears as the whitelisted one (using sites like ). Documentation: Provide...
...to deploy a private internal Nextcloud environment running on a WireGuard-based mesh with a local domain name, hosted on Proxmox. Scope - Assess host (CPU/RAM/storage), network, and document everything in a per-client folder + README.md. - Proxmox install (manual) + create 2 “golden template” VMs: Pi-hole + WireGuard Easy, Nextcloud AIO - Deploy/configure: WireGuard Easy, Pi-hole (DNS), Nextcloud AIO (Docker). - Finish Nextcloud: admin user + apps (Flow, Calendar, Talk, Files, Office suite). - Implement custom branding (logos/links). - Design role model + role sync approach across multiple clients; integrate roles with Nextcloud apps (Flow/Calendar/Talk/Deck) and a phone/texting workflow. - Add endpoints (computers) to WireGuard so users can rea...
...caps, and session expiry. MikroTik RADIUS attributes (RouterOS v7): Mikrotik-Rate-Limit, Session-Timeout, and Simultaneous-Use = 1. 4. MikroTik Integration (RouterOS v7) Hotspot authentication via RADIUS. API integration for: Viewing active hotspot users, disconnecting sessions, and monitoring router health (CPU, RAM, uptime). Support for multiple routers per ISP. VPN-based connectivity (WireGuard preferred). 5. Payments – M-Pesa (Mandatory) Safaricom Daraja STK Push with secure callback handling. Rules: Voucher is created only after successful callback; idempotent callbacks to prevent duplicate vouchers; storage of full transaction data for audits. Automation: Payment must auto-trigger voucher creation, SMS delivery, and auto-login. 6. SMS Integration Provider: Te...
...through a WireGuard tunnel (I already have the keys and endpoint). A kill-switch or similar safeguard should block leaks if the tunnel drops. • Basic OpenWrt housekeeping—time zone, password change, firmware kept current—should be part of the final image. I’m comfortable flashing firmware, but I need your expertise to produce a clean, reproducible configuration and show me how to restore it quickly if I reset the unit while on the road. Deliverables 1. Ready-to-import configuration archive (or clear CLI commands) for the MT300N-V2. 2. A short walkthrough—live screen-share or concise PDF—so I can repeat the setup myself. 3. Confirmation that the router: • pulls the static WAN IP, • broadcasts Wi-Fi with the SSID I ch...
...Owner Documentation and acceptance testing Final handover and verification Excluded (unless explicitly agreed) Software licenses Enterprise DLP solutions MDM / Intune Source code migration Ongoing maintenance after delivery 3. Architecture (Required) Recommended Architecture (Preferred) VPN + RDP (no public RDP exposure) VM does NOT expose RDP to the Internet Access is allowed only through: VPN (WireGuard / OpenVPN / IPsec), or Bastion / jump host RDP listens only on internal/VPN interface This is the preferred and expected solution. Alternative (Only if explicitly requested) RDP exposed to Internet Strict IP whitelist MFA / RD Gateway Strong monitoring 4. User Model (Mandatory) Three distinct local users must be created: 4.1 owner_user Full development permissions Internet acc...
...Written documentation + handover Required Experience Google Workspace administration (Business Plus / Enterprise) Identity & Access Management (IAM / SSO) VPN or Zero Trust network implementations SaaS security (QuickBooks Online, accounting systems preferred) Strong understanding of MFA, IP allow-listing, and access policies Nice to Have Cloudflare Zero Trust experience Tailscale or WireGuard experience Accounting firm or financial services background Security certifications (Google, Azure, AWS, CISSP, etc.) Engagement Type Fixed-scope project or hourly (with cap) Remote work acceptable Ongoing support optional (not required) Success Criteria Users cannot access systems from unapproved locations Remote access works securely and reliably No shared passwords...
...experienced VPN app developer to build a secure, cross-platform VPN client supporting WireGuard, Shadowsocks (TCP/UDP), Shadowsocks over WebSocket/HTTPX, and multi-hop Shadowsocks (up to 3 hops) similar to Outline. The app will: -Accept access keys and connect to the VPN -If connection fails, it should fallback from WireGuard to Shadowsocks -Support multi-hop configurations (example JSON will be provided) -Support Shadowsocks over WebSocket and HTTPX -Periodically fetch domain lists via API to avoid blocking (API returns fallback domains) -Report successful and failed connections back to the API Platforms to Support: -Flutter, Kotlin, Switft and etc Key Requirements: -Implement support for: -WireGuard -Shadowsocks(TCP/UDP) -Shadowsocks over WebSocket and H...
I am looking for an experienced Network Engineer to set up and configure a robust WireGuard VPN architecture. The primary goal is to link multiple remote sites to a central server to allow for 24/7 live access to security camera streams. The connection must be highly stable, secure, and optimized for high-bandwidth video data. Scope of Work: Server Setup: Install and harden a WireGuard server on [Insert your OS here, e.g., Ubuntu 24.04, Debian, or pfSense]. Site-to-Site Tunneling: Configure persistent tunnels between [Number of sites] remote locations and the central hub. Routing & Subnets: Configure IP forwarding and static routes to ensure all NVRs and IP cameras are accessible across the VPN without IP conflicts. CCTV Optimization: Optimize MTU settings and Persistent ...
...Automation, and Security. Capable of designing, deploying, securing, and maintaining scalable on‑prem, hybrid, and cloud environments aligned with modern industry demands (2025+). CORE TECHNICAL SKILLS Networking & Security Enterprise Network Design (LAN / WAN / WLAN) MikroTik (Routing, Firewall, NAT, VLAN, QoS) VLAN Configuration, Trunking, Inter‑VLAN Routing VPNs: L2TP/IPSec, PPTP, OpenVPN, WireGuard, Site‑to‑Site & Remote Access Firewall Policies & Network Hardening IP Address Management (IPAM) Network Monitoring & Performance Optimization Cloud Computing & Infrastructure Amazon Web Services (AWS): EC2, VPC, IAM, S3, Security Groups Cloud Networking (VPC Peering, NAT Gateway, Route Tables) On‑Prem to Cloud Migration Hybrid Cloud Architecture V...
PLEASE DO NOT CONTACT ME IF YOU CANT DO FLATE RATE OF MAX $30 willing to negotiate within reasonable limits. Hi are you able to complete this project? This is what need done OKay here is what is needed I need my old server hosted at contabo to be fully migrated over to tiger with setup and please use my adguard config file don’t create new one. I will also need you to install wireguard app that I made using instructions are in the zip file but only do the first two steps do not deploy I will set it up. Also I used nginx and would also like to add email server and transfer my nextcloud config too. Basically I want how my old server is to match my new server and lastly when everything is done apply the same firewall settings. The mail server you are to add is called Stalwa...
