Security for VPN

Since VPN server needs to be on a public subnet, we should make sure to remove all unnecessary packages and server hardening should be applied to the system. Two-factor authentications must be a part of VPN server to log in. OpenVPN allows the integration of Google Authenticator, so this part becomes fairly simple.