r/StealthRemoteWork

In this post we will build our own secure VPN server to connect to it from anywhere in the world and mimic our own home address. The goal is to virtually take our home IP everywhere we go. As a bonus we will also be able to connect to our home LAN network from anywhere in the world allowing us to control printers, NAS servers, cameras, etc.

The Hardware:

1. OpenWrt compatible router with enough RAM (>8mb), Storage (>16mb) and CPU power (>580mhz)
2. 2x Ethernet cables
3. a PC with Ethernet port or USB to Ethernet Adapter
4. Internet connection
5. A mini UPS in case power goes down (It's crucial the router stays on all the time)

The Software:

1. Linux / Windows
2. This script from Flashed Router GitHub repo

The Steps:

1. Connect PC to Router via the Ethernet cable
   • Router's LAN → PC
   • Router's WAN → ISP modem LAN - see this picture for an example
2. Reflash your device with OpenWrt. You can find step by step guide on their wiki pages: https://openwrt.org/toh
3. Once you have OpenWrt installed ssh into it using your command prompt

ssh root@openwrt.lan

4. You should get an output like this:

  _______                     ________        __
 |       |.-----.-----.-----.|  |  |  |.----.|  |_
 |   -   ||  _  |  -__|     ||  |  |  ||   _||   _|
 |_______||   __|_____|__|__||________||__|  |____|
          |__| W I R E L E S S   F R E E D O M
 -----------------------------------------------------

 
root@openwrt:~#

5. Then run this command within the new shell session:

# for some reason reddit is blocking this - the command will be on the github page I shared.

Note: FlashedRouter.com were kind enough to share their home tunnel script which they use for their own plug and play devices which create the home tunnel we are trying to build in this post. You can browse their code and inspect every line in their GitHub: github.com/FlashedRouter/home-tunnel

6. The script will run multiple commands to deploy the server and output the final Wireguard VPN server config file also found under /root/wg-client.conf, which you will need to connect back to your home server from anywhere in the world. It will look something like this:

root@homeServer:~# cat wg-client.conf
[Interface]
PrivateKey = 0G………………………..w0I=
Address = 192.168.9.2/32
ListenPort = 51820
DNS = 94.140.14.14, 94.140.15.15

[Peer]
PublicKey = OZZ…………………….…dTk=
PresharedKey = Ho…………………….Gk=
Endpoint = 192.168.88.1:51820
AllowedIPs = 0.0.0.0/0, ::/0

7. You will also need to forward the wireguard port (udp: 51820) on your ISP modem. This will depend on your ISP modem but a google search will lead you to the correct guide. Here is an example: noip.com/support/knowledgebase/general-port-forwarding-guide

8. You might also need a dynamic IP to static domain name service like dyns.cx/ to get your IP if it changes with every reboot.

9. You're ready for testing now. Just copy the wg-client.conf file contents into your Wireguard and click connect.

10. If you use it from your phone, switch data on and your

I understand some steps are a bit vague, if you have any questions - AMA in the comments. I also would like to recommend looking into a plug and play solution: called keepmyhomeip.com where no port forwarding or static IP are required.

Ps: report bugs and improve code at the same github repo.

I have been working on something, and I think it has the potential to be useful to other digital nomads and remote workers.

The Problem:

Have you ever tried to access your home bank, streaming services, government websites, tax, or work resources while traveling abroad, just to get a lovely message saying it's not available in your region? Or, worse, have you ever been marked as a suspicious login attempt because you're trying to access your resources while working remotely from a coffee shop in Bali?

The Solution:

I have created a device that will allow your internet connection to be tunneled through your home network instead of a data center. This will allow you to access your resources, such as your bank, streaming services, tax, work resources, etc., because it will appear that your internet is coming from your home network.

Why is it Different?

• Much harder to detect/block than a VPN
• Allows access to your bank, streaming services, tax, work resources, etc.
• More reliable than switching between VPN servers
• Built by people who need to work remotely
• It's a hardware solution, so no software is required to be installed at all!

Who is it for?

• Digital nomads sick of region locking
• Remote workers who need to get to region-locked tools and services
• Anyone who's been locked out of their own stuff while traveling

ps: We have experience with building VPN tools. So this version is built on top of our old product, and I'm looking to get feedback. Would something like this help you? What features would you want to see?

We built a hardware tunnel that preserves your residential IP at home when you're on the go – no config required, no data center IPs

It's two devices: our home server unit and our TravelMate. They work together to create an encrypted tunnel that sends all your traffic through your home IP

Plug and play – no port forwarding, no config required

Use case: remote employees living abroad that need stable IP for work tools, contractors with location constraints, or anyone that hates when VPNs get your IP blacklisted

Early adopter discount available 20% off for promocode REDDIT
Learn more at keepmyhomeip.com. AMA