CryptoServers
Launch server

Self-hosted VPN server on offshore hardware

Run your own WireGuard or OpenVPN egress on hardware you control — no shared concentrators, no third-party logs, no lifetime-deal asterisks.

See plans from $16.99/mo Deploy now
No KYC, ever DMCA ignored No traffic logs Live in 60 seconds
1 Tbps
DDoS absorption
41s
Median deploy
3
Recommended locations
$16.99
Entry plan / month
Built for the workload

Why Self-hosted VPN server runs better here

Specific technical alignment, not generic copy. Each point below is something the workload needs and we provide by default.

Full root, kernel modules permitted, raw sockets allowed. Required for WireGuard tun/udp.
IPv4 + /64 IPv6, BGP announcements on dedicated tiers if you bring your own range.
Egress IPs not part of any commercial VPN range — fewer apps auto-flag the traffic.
AES-NI on every CPU tier. WireGuard saturates 1 Gbps on a single core on Starter.
No traffic mirroring, no netflow retention beyond 24 hours. Documented on /privacy/.
Workload notes

What you should know about Self-hosted VPN server on Cryptoservers

WireGuard, OpenVPN, Shadowsocks, Outline and Tailscale exit nodes are all permitted, with raw socket access on every plan and IPv6 announced by default. Because we publish the AS-path, your VPN egress IP isn't a known commercial-VPN range — apps that block major VPN providers won't auto-flag you.

For a personal egress, vps-starter is enough; for a small team or a self-hosted exit-as-a-service, vps-growth handles 50–80 concurrent peers comfortably with kernel WireGuard. Everything is full root, KVM-virtualized — load whatever module the kernel ships, including ones that need raw network access.

Jurisdictions

Recommended locations for Self-hosted VPN server

Each location below has a specific legal or technical alignment with this workload — the others stay supported, but we suggest these first.

Switzerland

Zürich (CH-ZRH)

Swiss court order required — foreign DMCA ignored by law.

Self-hosted VPN server in Switzerland

Iceland

Reykjavík (IS-RKV)

Free-press constitution, no MLAT, geothermal grid.

Self-hosted VPN server in Iceland

Netherlands

Amsterdam (NL-AMS)

Tier-1 carriers, lowest median EU latency, AMS-IX peering.

Self-hosted VPN server in Netherlands
Plans

Plans sized for Self-hosted VPN server

Pre-filtered by CPU, memory and bandwidth profile. Pick the cheapest that fits your projected load — you can hot-resize later without downtime.

VPS

Starter

AMD EPYC 7443P
  • 2 vCPU
  • 4 GB DDR4 ECC
  • 60 GB NVMe
  • 1 Gbps unmetered
$16.99/mo
Deploy
VPS

Growth

AMD EPYC 7443P
  • 4 vCPU
  • 8 GB DDR4 ECC
  • 120 GB NVMe
  • 2.5 Gbps unmetered
$26.99/mo
Deploy
VPS

Business

Intel Xeon Gold 6430
  • 6 vCPU
  • 16 GB DDR5 ECC
  • 240 GB NVMe
  • 5 Gbps unmetered
$39.99/mo
Deploy
Sysadmin FAQ

Self-hosted VPN server — questions answered

WireGuard or OpenVPN — does it matter which I run?
WireGuard is faster (kernel module on Linux 5.6+, hard to beat for raw throughput) and uses less CPU. OpenVPN is more permissive about NAT traversal and has older client support. Both work fine; we don't restrict either.
Will major sites detect this as a VPN and challenge me?
Less than commercial VPN ranges, but it isn't magic. Cloudflare and others increasingly fingerprint based on TCP/IP characteristics, not just IP reputation. If you're hitting CAPTCHAs everywhere on a particular IP, we re-IP you to a fresh /29 within the same prefix free of charge.
How many peers can a vps-growth handle?
Empirically 50–80 active WireGuard peers with light traffic, or 30–40 with sustained 5 Mbps each. Memory is the gating factor at scale, not CPU; WireGuard is cheap. If you outgrow it, vps-business at 16 GB DDR5 takes you to ~250 peers.
Can I announce my own /29 or /48 over BGP?
Yes — on dedicated tiers (ded-bastion and up). VPS plans share our prefixes. You bring an LOA and the IRR records; we provision the session within a day.
What logs do you keep on the host?
Billing records, panel actions (provisioning, reboots), and 24-hour ARP/MAC tables. No netflow, no NIC mirrors, no traffic captures of any kind. Full text is in /privacy/.
Other workloads

Run something else on the same hardware

Same network, same posture, same prices. Pick what you actually need to deploy.

Tor relay & exit hosting

Tor relay

Self-hosted mail server

Mail server

Bitcoin full node

Bitcoin node

Monero full node

Monero node

Lightning Network node

Lightning node

Matrix homeserver hosting

Matrix homeserver

Game server hosting

Game server

Offshore seedbox

Seedbox

Dev sandbox / CI runners

Dev sandbox

Self-hosted VPN server — deploy in 60 seconds

No email, no ID, no account. Pick a plan, pay in crypto, get root.

Launch a server See the network