How to Set up a Hetzner VPN Server With UTunnel

This guide describes how to set up a Hetzner VPN server using UTunnel's Cloud VPN as a Service.

UTunnel facilitates quick and easy VPN server deployment with prominent IaaS providers in the industry and Hetzner is one among them. UTunnel’s automated server deployment process makes it easy for users to deploy and manage a VPN server with Hetzner.

1. Log in to your Hetzner account and create a Virtual Private Server on the Hetzner cloud console. While creating the VPS, make sure that you select Ubuntu 20.04 server.

2. After creating the Hetzner VPS, copy and note down the newly created instance’s IP address.

3. Create a UTunnel account and log in to your account. Navigate to the Server tab and click on the Create Server button. 

4. Fill in your billing address and click on the PROCEED button to advance to the next step. You can also skip this step by clicking on the Skip button.

5. You can customize your Hetzner VPN server by managing the following options:

• Package: Select a package (Basic or Standard) according to your preference.
• Server Type: Select the server type to be On-Premise
• Server Name: Provide an easily identifiable name of your choice as the server name.
• IP Address: Key in your Hetzner server instance’s IP address
• VPN Accounts: Select the number of VPN user licenses required on the server
• Coupon: Enter the coupon code if you have any

Click on the PROCEED button once you finish customizing the server configurations to advance to the next step.

6. You can review your server details from the Order Summary page. Click on the PROCEED button to progress to the next step.

7. Enter your credit card details as required and click on the Start Your Trial/Pay Now button to initiate the server creation.

8. You will be directed to the Server Overview page where you can check the server deployment status.

9. Once the server deployment is initiated, you will get a registration token, which you need to register your Hetzner VPN server.

10. To execute the next steps to deploy your Hetzner VPN server, your need to connect to your server via SSH and run the following commands. You need to have sudo access to run these commands.

Create a directory named utunnel and make it the current working directory:

Download the required files and extract them with the command:

Register your Hetzner VPN server after replacing YOUR_REG_TOKEN with the registration token you received earlier

Now start the VPN service with the command: 

 

11. You also have to make sure that inbound connections to the following ports are allowed to accept VPN connections.

Ports used for OpenVPN connections

• TCP 443
• UDP 443
• UDP 53 (if scramble/obfuscate VPN is enabled)

Ports used for IPSEC connections

• UDP 4500
• UDP 500

Ports used for managing UTunnel services like live sessions, firewall, and site-to-site tunneling.

• TCP 38081

Now your Hetzner VPN server is ready for use. You can invite users into your server and start using the VPN.