> WireGuard also works just fine - I was able to selfhost and use it without any extra obfuscation.
Good for you. I have a few machines around the world (a truly geo-distributed homelab lol), and my node on a residental connection in Russia (north-west, no clue about other regions) has pretty spotty vanilla Wireguard connectivity to the rest of the world - it works now and then, but packets are dropped every other day. My traffic patterns are unusual compared to usual browsing (mostly database replication), and something seem to trigger DPI now and then. Fortunately, wrapping it in the simplest Shadowsocks setup seems to be working fine at the moment.
But yeah, can confirm, VPNs are ubiquitous and work reasonably well for everyone I know who still lives there. Although I think all decent VPN providers have measures against traffic analysis nowadays, as plain Wireguard is not exactly reliable.
Have you tried AmneziaWG? From what I know, it's specifically designed to bypass protocol-level blocking of WireGuard
> decent VPN providers
You'd be surprised by the amount of people I know who use random "VPN services" which are literally just WireGuard configs you can buy through a Telegram bot for like 100₽/month
Well... It all started from a single-location homelab 20-ish years ago, while I was still living at my parents' place (although I had a 1/4 stake in ownership). Then I moved around but kept the server at the old place and added a second machine. Just because I'm self-hosting my email, and residential connections aren't best in terms of availability I thought having a HA system would be fun and useful - and so it was (although not always fun, of course). Few more moves later, I've ran a bunch of servers on residential connections all around the world. Some were demoted to VPSes for consensus and backups, as I moved out, some are still there.
There's a Wireguard-based mesh (static routing, but declarative centrally managed setup using Nix) with Shadowsocks for traversing hostile borders. Runs a few private/personal services for myself, family, and friends - email, messaging, media library, the commonplace homelab stuff. Certainly not the best design - things never are, there's always room for more and more improvements, no matter how much you work on it, but I'm pretty happy with it overall.
There's no real reason why is it like this. I could've done it more conventionally and probably avoid a lot of downsides - but it's a fun little exercise that allows me to play with various technologies, and I like that the system is truly mine, hardware and premises it's on, all built by my own hands (random fun fact: I was a founding engineer at the ISP that two of my nodes are on).
tl;dr: Had a single home server, moved around and added a few more. No particular reason, it's just a fun geeky toy for me. :-)
Good for you. I have a few machines around the world (a truly geo-distributed homelab lol), and my node on a residental connection in Russia (north-west, no clue about other regions) has pretty spotty vanilla Wireguard connectivity to the rest of the world - it works now and then, but packets are dropped every other day. My traffic patterns are unusual compared to usual browsing (mostly database replication), and something seem to trigger DPI now and then. Fortunately, wrapping it in the simplest Shadowsocks setup seems to be working fine at the moment.
But yeah, can confirm, VPNs are ubiquitous and work reasonably well for everyone I know who still lives there. Although I think all decent VPN providers have measures against traffic analysis nowadays, as plain Wireguard is not exactly reliable.