A mobile application to deploy a personal VPN server in the cloud (DigitalOcean, AWS, GCP, Azure and others) with DNS ad-blocking and other features
- Deploys a VPN server to major Cloud Providers (DigitalOcean only, others coming soon).
- Connects to Cloud Providers using OAuth2 or an existing API token.
- Uses IKEv2 IPSec-based VPN service (strongSwan).
- Sets up an ad-blocking DNS resolver (Pi-hole).
- Installs VPN profile with SSL/TLS certificate (Signed by Let's Encrypt).
- Uses native VPN client of iOS (Android version is in development).
- Contains a xterm.js-based Terminal for SSH connection to the server (Experimental)
- The easiest way is to install ZudVPN from App Store or Google Play (soon).
- Join our Beta Test Program: https://testflight.apple.com/join/o2U4Ljbh
- It is also possible to build from the source.
- Launch the app and connect to a Cloud Provider using OAuth2 or an existing API token.
- Choose your cloud provider and select a region to start the deployment.
- It usually takes 3 minutes (on DigitalOcean) to get the VPN server up and running.
- After the deployment, VPN Profile will be loaded automatically.
- Voila! Start the connection. Now you are behind your personal VPN server.
- Should I use ZudVPN?
- That's up to you. Use at your own risk.
- Why is this better than using any free/public/private VPN provider?
- While most VPN providers will provide a secure connection to their endpoints, you may not be interested in putting blind faith in their claims that they will not log or track your activity online.
- With ZudVPN, you control all your traffic.
- How is this different from trailofbits/algo?
- Installation - with a single click of a button you can deploy your own Cloud VPN server on your phone!
- How much does this cost?
- ZudVPN tries to use a least priced server on Cloud Providers. For instance, DigitalOcean's least plan costs 5$/month server. Besides, you can always destroy the server whenever you don't need.
- What is the bandwidth limit?
- That depends on Cloud Providers. In general, the bandwidths are above 1 TB/month.
- How does ZudVPN create VPN profiles?
- On iOS, to create a legitimate VPN profile, iOS requires a valid SSL certificate for the VPN server and a Personal VPN entitlements for the application. ZudVPN generates certificates using Let's Encrypt service. To generate certificates Let's Encrypt requires a valid domain. During the deployment, ZudVPN generates a domain name bound to the IP address of your server.
- How do I SSH into the deployed VPN server?
- ZudVPN has an incorporated Terminal feature that you can use to log into your server. (Experimental feature)
- What is the password to login to Pi-hole?
- The password is
zudvpn. Access to Pi-hole is restricted to VPN connected users.
- The password is
- Are you going to support other Cloud Providers?
- Yes, we are working to add more providers.
- Will this make me completely anonymous?
- No, absolutely not. All of your traffic is going through a provider which could be traced back to your account. You can still be tracked by browser fingerprinting, etc. Your IP address may still leak due to WebRTC, Flash, etc.
- How do I uninstall VPN profiles?
- You can destroy VPN server from within the application. This will automatically delete the VPN profile from your phone as well. However, if you delete the profile manually from iOS VPN settings, the server would still be active. You must destroy the server in order to not get charged by the provider.
- VPN service failures
- Occasionally obtaining SSL certificate from Let's Encrypt may fail. The easiest way to resolve the issue is to destroy and re-create the server.
- Finish work on Android version
- Work on tvOS version
- Add AWS, GCP and other cloud providers
- Keychain/Keystore shared VPN
- Add WireGuard as a VPN solution
All donations support continued development of ZudVPN.
- We accept donations via Patreon.
- strongSwan - IPSec-based VPN software.
- CoreOS - used for running containers.
- Pi-hole - used for DNS ad-blocking.
- React-Native - ZudVPN is written using React-Native.
- dan-v/dosxvpn - ZudVPN was mostly inspired by this project.
- trailofbits/algo - strongSwan configuration is borrowed from this project.
- Follow install steps to build the application locally.
- For iOS: You must have an Apple Developer account because this application uses paid-developer only entitlement Personal VPN.