Network Security

This bundle of guides shows how to configure VPNs, firewalls, and other network security tools on cloud compute instances, or how to use Linode’s managed network security products.


VPC AvailabilityVPCs are now publicly available to all customers in select data centers. For a list of supported regions, review the Availability section.


Install and Configure a StrongSwan Gateway VPN Server on Ubuntu 20.04

StrongSwan is an open-source tool that operates as a keying daemon and uses the Internet Key Exchange protocols (IKEv1 and IKEv2) to secure connections between two hosts.


Network Security Tools and How They Help You

Security starts with having a well-protected network. This means keeping intruders out, and continuously scanning for potential breaches and flagging attempted compromises.


Installing BCC to Use eBPF Tracing Tools

Before You BeginYou need the following: A system running on a Linux distribution and a Linux kernel version 4.


Get Started with nftables

nftables replaces the successful iptables and its related frameworks built on Netfilter. With nftables come improvements to performance and usability, but also significant changes to syntax and usage.


Installing and Configuring WireGuard on CentOS 8

What is WireGuard?WireGuard® is a next-generation security-focused Virtual Private Network (VPN) which can easily be deployed on low-end devices, like Raspberry Pi, to high-end servers.


Cloud Firewall

Linode’s Cloud Firewall service is a robust cloud-based firewall solution available at no additional charge for Linode customers.



VLANs are private virtual local area networks that are available at no additional cost to Linode users in select data centers.


Deploy OpenVPN through the Linode Marketplace

OpenVPN is a widely trusted, free, and open-source VPN (virtual private network) application that creates encrypted tunnels for secure data transfer between computers that are not on the same local network.


Deploy Pritunl through the Linode Marketplace

Pritunl is an open source VPN server and management panel. It gives the user the power of the OpenVPN protocol while using an intuitive web interface.


Deploy UTunnel VPN through the Linode Marketplace

UTunnel VPN lets you set up your own private VPN server quickly and easily; no technical expertise is required.


Deploy WarpSpeed VPN through the Linode Marketplace

WarpSpeed makes it easy for developers to access cloud infrastructure via the powerful WireGuard® VPN protocol.


Deploy WireGuard through the Linode Marketplace

WireGuard® is a simple, fast, and modern virtual private network (VPN) which utilizes state-of-the-art cryptography.


Set Up WireGuard VPN on Debian

What is WireGuard?WireGuard® is a simple, fast, and secure VPN that utilizes state-of-the-art cryptography. With a small source code footprint, it aims to be faster and leaner than other VPN protocols such as OpenVPN and IPSec.


Creating a SOCKSS Proxy Server with Shadowsocks

This guide shows you how to create a SOCKS5 proxy server with Shadowsocks on Ubuntu and CentOS.


Set Up WireGuard VPN on Ubuntu

WireGuard® is a simple, fast, and secure VPN that utilizes state-of-the-art cryptography. With a small source code footprint, it aims to be faster and leaner than other VPN protocols such as OpenVPN and IPSec.


How to Configure a Firewall with UFW

What is UFW?UFW, or uncomplicated firewall, is a frontend for managing firewall rules in Arch Linux, Debian, or Ubuntu.


Configure a Firewall with Firewalld

Firewalld is frontend controller for nftables (or its older counterpart, iptables) used to implement persistent network traffic rules.


Use SSH Public Key Authentication on Linux, macOS, and Windows

Public key authentication with SSH (Secure Shell) is a method in which you generate and store on your computer a pair of cryptographic keys and then configure your server to recognize and accept your keys.


A Tutorial for Controlling Network Traffic with iptables

iptables is an application that allows users to configure specific rules that will be enforced by the kernel’s netfilter framework.