Skip to content

blank-query/lazyVPN-for-Omarchy

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

ย 

History

10 Commits
bin
bin
ย 
ย 
images
images
ย 
ย 
LICENSE
LICENSE
ย 
ย 
install_lazyVPN.sh
install_lazyVPN.sh
ย 
ย 
readme.md
readme.md
ย 
ย 

Repository files navigation

LazyVPN

LazyVPN is a powerful, script-based utility for managing WireGuardยฎ VPN connections, meticulously crafted for the Omarchy Linux environment. It replaces manual wg-quick and systemd-networkd configuration with a fast, keyboard-driven TUI, providing a comprehensive suite of tools for power users.

Table of Contents

Core Philosophy

  • Speed & Efficiency: Every action is a few keystrokes away. No mouse required.
  • Control: Granular control over your connection, security, and automation.
  • Intelligence: The system is smart. It detects providers, parses server names, and automatically handles complex tasks.
  • Resilience: With features like the auto-recover daemon and atomic configuration saves, LazyVPN is built to be reliable.
  • Transparency: Understand your connection with detailed status info, performance tests, and leak protection.

Screenshots

Main Menu

LazyVPN Main Menu The main menu when disconnected, showing all available options

Server Selection with Feature Indicators

Server Selection Interactive server picker with country flags, feature emojis, and real-time filtering

Connection Modes

Connection Modes Choose how to connect: lowest latency, random, specific server, or last used

Connecting to a Server

Connection Process Real-time connection status with IP verification and DNS leak protection

Latency Testing

Latency Test Results Parallel latency testing across all servers with sorted results

Advanced Configuration

Click to see more screenshots

Killswitch Settings

Killswitch Settings Firewall killswitch with local network access and disconnect behavior options

Autoconnect Settings

Autoconnect Settings Configure automatic connection on boot with multiple mode options

Options Menu

Options Menu Server management, auto-recover daemon, IPv6 protection, and more

Adding Servers

Add Servers Smart server import with automatic validation, provider detection, and duplicate prevention

Testing Menu

Tests Menu Comprehensive testing suite including latency, speed, DNS leak tests, and performance history

Feature Matrix

๐Ÿ”„ Connection Management

  • Multiple Connection Modes:
    • โšก Lowest Latency: Automatically performs parallel latency tests against all servers and connects to the one with the lowest ping.
    • ๐ŸŽฒ Random Server: Connect to a randomly selected server for effortless privacy.
    • ๐ŸŒ Choose Server: Select a server from a filterable, fzf-powered list with a detailed preview panel.
    • ๐Ÿ”„ Last Used Server: Instantly reconnect to your most recent server.
  • Smart Server Display:
    • Automatic Server Renaming: When adding servers, LazyVPN automatically renames them to a standardized format using provider detection, filename parsing, and IP geolocation as fallback.
    • Pretty Names: Displays servers with full location names and country flags (e.g., ๐Ÿ‡บ๐Ÿ‡ธ United States - New York (123) โ€ข ProtonVPN).
    • Feature Emojis: Visual indicators show server capabilities at a glance: ๐Ÿ”„ P2P/Torrenting, ๐Ÿ”’ Secure Core, ๐Ÿง… Tor, ๐Ÿคก Free Tier, ๐Ÿš€ VPN Accelerator, ๐Ÿ—ก๏ธ NetShield Level 1, โš”๏ธ NetShield Level 2, ๐ŸŽฎ Moderate NAT.
    • Provider Detection: Intelligently detects VPN providers (ProtonVPN, Mullvad, IVPN, PIA, NordVPN, Surfshark, etc.) from endpoint, DNS, or config file contents.
  • Connection Status: The menu bar always shows your real-time status (๐ŸŸข CONNECTED or ๐Ÿ”ด DISCONNECTED) and the currently connected server.
  • Seamless Server Switching: Switches between servers gracefully, automatically updating firewall rules and routes.

๐Ÿ›ก๏ธ Security & Privacy

  • Advanced Firewall Killswitch:
    • An iptables-based killswitch that blocks all internet traffic if the VPN disconnects, preventing any data leaks.
    • Dynamic Updates: The killswitch is smart. It automatically allows traffic to the new VPN endpoint before connecting, ensuring seamless server switching without ever disabling the killswitch.
    • Configurable Local Network Access: Toggle whether to allow access to local network devices (printers, NAS, etc.) while the killswitch is active.
    • Configurable Disconnect Behavior: Choose what happens when you manually disconnect:
      • ๐ŸŸข AUTO: Automatically disable the killswitch.
      • ๐ŸŸก PROMPT: Ask whether to disable the killswitch.
      • ๐Ÿ”ด NEVER: Keep the killswitch active, ensuring the internet remains blocked until you reconnect.
  • ๐Ÿ” Auto-Recover Daemon:
    • A background daemon constantly monitors the health of your VPN connection.
    • If it detects a drop or stall, it will automatically attempt to reconnect to the same server.
    • Toggle from โš™๏ธ Options โ†’ ๐Ÿ” Auto-Recover.
  • ๐Ÿ”’ IPv6 Leak Protection:
    • Actively checks for and prevents IPv6 leaks by default.
    • Can be toggled from the menu if you need to use IPv6.
  • ๐Ÿงช DNS Leak Test:
    • A built-in test to verify that your DNS queries are being correctly routed through the VPN's DNS servers, not your ISP's.
  • ๐Ÿ“ Configuration Storage:
    • Server configurations are currently stored in plaintext in ~/.config/lazyvpn/wireguard/
    • Note: Encrypted storage is a planned optional feature (see Roadmap)

โš™๏ธ Automation & Configuration

  • ๐Ÿ”Œ Autoconnect on Boot:
    • Set LazyVPN to automatically connect when you log in.
    • Multiple Autoconnect Modes:
      • Connect to the last used server.
      • Connect to the lowest latency server.
      • Connect to a random server.
      • Connect to a specific server of your choice.
  • โž• Easy Server Management:
    • Add Servers: A guided fzf interface to import .conf files from ~/Downloads with automatic validation, provider detection, location detection (via IP geolocation if needed), standardized renaming, and duplicate prevention.
    • Remove Servers: Safely remove servers with automatic cleanup of performance history and configuration references.
    • Both accessible from โš™๏ธ Options submenu.
  • โœ๏ธ Interface Renaming: Easily rename the network interface (e.g., from wg0 to lazyvpn) directly from the menu.
  • Robust Configuration:
    • Uses atomic file writes to prevent configuration corruption.
    • Interactive Recovery: If the config file is ever deleted or corrupted, LazyVPN will guide you through an interactive prompt to recreate it.
    • Automatic Migration: Handles upgrades and configuration changes from older versions seamlessly.

๐Ÿ“Š Performance & Testing

  • โฑ๏ธ Latency Testing:
    • Test the latency of the currently connected server.
    • Test All Servers: Run parallel latency tests on all servers to find the quickest.
  • ๐Ÿ’จ Speed Testing:
    • Run a download speed test on the currently connected server.
    • Test All Servers: A comprehensive test that connects to each server one-by-one, runs a speed test, and presents a sorted list of the fastest servers.
    • Both "Test All" features include an option to test your direct, non-VPN connection for comparison.
    • Non-VPN results are recorded in performance history as ๐ŸŒ Direct (Non-VPN).
  • ๐Ÿ“ˆ Performance History:
    • Automatically records the results of every latency and speed test.
    • View a summary of average speeds and latencies for all servers.
    • View a detailed log of the last 20 tests for any specific server.

โœจ System Integration

  • Omarchy Menu: Adds a "LazyVPN" entry to the main Omarchy menu (SUPER+ALT+SPACE).
  • Dedicated Keybinding: Launch the menu instantly with SUPER+L (automatically registered in the Omarchy keybind help menu at SUPER+K).
  • Passwordless Operation: A secure sudoers configuration covers all VPN operations (connections, disconnections, killswitch updates). Password only required during installation and uninstallation.
  • Desktop Notifications: Provides clear notifications for connects, disconnects, and other key events.
  • Smart Change Detection: Automatically detects when you add or remove .conf files and notifies you.

Requirements

  • Omarchy Linux (Arch-based distribution)
  • systemd-networkd (enabled and running)
  • systemd-resolved (enabled and running)
  • wireguard-tools or WireGuard kernel module
  • curl (for speed tests and public IP detection)
  • bc (for latency/speed calculations)
  • iptables (for killswitch functionality)
  • bind-tools (provides dig for DNS leak testing)
  • fzf (provided by Omarchy)
  • omarchy-launch-walker (Omarchy menu system)
  • omarchy-launch-floating-terminal-with-presentation (Omarchy terminal launcher)
  • omarchy-notification-dismiss (Omarchy notification system)

Note: The installer automatically installs missing dependencies (except Omarchy itself).

Installation

  1. Clone the Repository:

    git clone https://github.com/blank-query/lazyVPN-for-Omarchy.git
cd lazyVPN-for-Omarchy

  2. Run the Installer:

    ./install_lazyVPN.sh

    The installer handles everything: dependencies, script installation, sudo rights, and desktop integration.

First-Time Setup

  1. Get WireGuard Files: Download .conf files from your VPN provider.
  2. Add Servers: Run LazyVPN (SUPER+L) and choose โž• Add New Server to import them from your ~/Downloads folder.
    • LazyVPN automatically validates, detects providers, determines locations (using IP geolocation if needed), and renames files to a standardized format.
    • Duplicate detection prevents adding servers to the same location twice.
    • You'll see both the original filename and the new standardized name during import.

Standardized Server Naming

Why Automatic Renaming?

VPN providers often give configuration files inconsistent or generic names like wg-US-FREE-27.conf, SE-31-TOR.conf, or server-uk-123.conf. LazyVPN automatically renames these to a standardized, machine-readable format when you import them. This provides several key benefits:

  • Consistent Organization: All servers follow the same naming pattern regardless of provider
  • Fast Display: Location codes (like US-WA) are expanded locally to full names (United States - Washington) without network calls
  • Smart Filtering: Easy to search and filter by country, state, city, or provider in the server picker
  • Duplicate Detection: Prevents adding multiple servers to the same location
  • Feature Encoding: Server capabilities are preserved in the filename for quick identification
  • Automatic Location Detection: Uses IP geolocation as fallback when filenames don't contain location info

Naming Format

[Provider-]Country[-State][-City][-Features]#Number

Examples

  • Proton-US-NY#123 โ†’ ๐Ÿ‡บ๐Ÿ‡ธ United States - New York (123) โ€ข ProtonVPN
  • Mullvad-SE-Stockholm#5 โ†’ ๐Ÿ‡ธ๐Ÿ‡ช Sweden - Stockholm (5) โ€ข Mullvad
  • IVPN-NL-Amsterdam-P2P#3 โ†’ ๐Ÿ‡ณ๐Ÿ‡ฑ Netherlands - Amsterdam (3) ๐Ÿ”„ โ€ข IVPN
  • PIA-US-CA-LosAngeles#7 โ†’ ๐Ÿ‡บ๐Ÿ‡ธ United States - California, Los Angeles (7) โ€ข PIA
  • Proton-CH-Tor#2 โ†’ ๐Ÿ‡จ๐Ÿ‡ญ Switzerland (2) ๐Ÿง… โ€ข ProtonVPN
  • Nord-GB-London-Stream#12 โ†’ ๐Ÿ‡ฌ๐Ÿ‡ง United Kingdom - London (12) ๐Ÿ“บ โ€ข NordVPN

How It Works

  1. Provider Detection: Identifies your VPN provider from DNS, endpoint, or config contents
  2. Location Parsing: Attempts to extract location from the original filename
  3. IP Geolocation Fallback: If filename parsing fails, looks up the endpoint IP to determine country, state/region, and city
  4. Feature Detection: Identifies server capabilities (P2P, Tor, Secure Core, Streaming) from filename and config
  5. Auto-Numbering: Assigns the next available number for servers in the same location
  6. Standardized Naming: Saves the file with the new name and displays it with full location names and emoji indicators

You never need to manually rename files โ€” LazyVPN handles it all automatically!

Server Feature Emojis

LazyVPN automatically detects and displays server features using visual emoji indicators. These emojis appear next to server names throughout the interface, allowing you to quickly identify server capabilities at a glance.

Feature Detection

All features are automatically detected from WireGuard configuration files when servers are added. No manual configuration required!

Emoji Feature What It Means Detection Source
๐Ÿ”„ P2P / Torrenting Port forwarding enabled for peer-to-peer file sharing and torrenting # NAT-PMP (Port Forwarding) = on in config
๐Ÿ”’ Secure Core Multi-hop VPN routing through privacy-friendly countries (CH/IS/SE) for enhanced security Peer comment pattern: CH/IS/SE-[EXIT_COUNTRY]#N
๐Ÿง… Tor Routing Routes traffic through Tor network for maximum anonymity Peer comment contains -TOR
๐Ÿคก Free Tier Free plan server (limited features) Peer comment contains FREE
๐Ÿš€ VPN Accelerator ProtonVPN's speed enhancement technology (up to 400% faster) # VPN Accelerator = on in config
๐Ÿ—ก๏ธ NetShield Level 1 Malware blocking only # NetShield = 1 in config
โš”๏ธ NetShield Level 2 Malware + ad/tracker blocking (full protection) # NetShield = 2 in config
๐ŸŽฎ Moderate NAT Optimized for gaming and P2P with reduced IP randomization # Moderate NAT = on in config

Example Server Displays

๐Ÿ‡ธ๐Ÿ‡ช Sweden - Alberta, Roslagen (1) ๐Ÿ”„๐Ÿ”’๐Ÿš€ โ€ข ProtonVPN
    โ””โ”€ Has: P2P support, Secure Core multi-hop, VPN Accelerator

๐Ÿ‡บ๐Ÿ‡ธ United States - Washington, Seattle (27) ๐Ÿ”„๐Ÿคก๐Ÿ—ก๏ธ โ€ข ProtonVPN
    โ””โ”€ Has: P2P support, Free tier, NetShield Level 1

๐Ÿ‡ธ๐Ÿ‡ช Sweden - Alberta, Stockholm (31) ๐Ÿ”„๐Ÿง…๐Ÿ—ก๏ธ โ€ข ProtonVPN
    โ””โ”€ Has: P2P support, Tor routing, NetShield Level 1

๐Ÿ‡ฆ๐Ÿ‡ฑ Albania - Tirana (52) โš”๏ธ๐ŸŽฎ โ€ข ProtonVPN
    โ””โ”€ Has: NetShield Level 2 (full ad blocking), Moderate NAT (gaming)

Provider-Specific Features

Currently, all feature detection is optimized for ProtonVPN configuration formats. Support for other providers' feature detection may be added in future updates.

Secure Core Multi-Hop: Entry countries are always privacy-friendly jurisdictions (Switzerland ๐Ÿ‡จ๐Ÿ‡ญ, Iceland ๐Ÿ‡ฎ๐Ÿ‡ธ, or Sweden ๐Ÿ‡ธ๐Ÿ‡ช) that route to your chosen exit country.

Usage

  • Open the Menu: Press SUPER+L.
  • Navigate: Use arrow keys and Enter. Esc to go back or exit.
  • In fzf pickers: Use Ctrl+A to select/deselect all when adding or removing servers.
  • Server filtering: In the "Choose Server" picker, type to filter by country, city, or provider.
  • All features are accessible through the menu.

Menu Structure

LazyVPN's menu is organized hierarchically with dynamic options that change based on your connection state.

Main Menu

When Disconnected:

  • ๐Ÿ”Œ Connect โ†’ Connection submenu (choose how to connect)
  • ๐Ÿ›ก๏ธ Killswitch โ†’ Killswitch configuration submenu
  • โš™๏ธ Autostart โ†’ Autostart configuration submenu
  • ๐Ÿงช Tests โ†’ Testing submenu
  • โš™๏ธ Options โ†’ Options submenu (server management, advanced settings)

When Connected:

  • ๐ŸŸข Status Bar: Shows connected server and public IP
  • ๐Ÿ”Œ Disconnect โ†’ Disconnects from current VPN
  • ๐Ÿ”„ Switch Server โ†’ Connection submenu (switch to different server)
  • ๐Ÿ›ก๏ธ Killswitch โ†’ Killswitch configuration submenu
  • โš™๏ธ Autostart โ†’ Autostart configuration submenu
  • ๐Ÿงช Tests โ†’ Testing submenu
  • โš™๏ธ Options โ†’ Options submenu

Connection Submenu (๐Ÿ”Œ Connect / ๐Ÿ”„ Switch Server)

  • โšก Lowest Latency โ†’ Automatically tests all servers and connects to fastest
  • ๐ŸŽฒ Random Server โ†’ Connects to random server
  • ๐ŸŒ Choose Server โ†’ fzf picker with server preview and filtering
  • ๐Ÿ”„ Last Used Server โ†’ Reconnects to most recently used server

Killswitch Submenu (๐Ÿ›ก๏ธ)

Shows current killswitch state (๐ŸŸข ENABLED or ๐Ÿ”ด DISABLED)

  • Toggle Killswitch โ†’ Enable/disable killswitch
  • ๐Ÿ“ถ Local Network Access โ†’ Toggle LAN device access when killswitch active
    • Status indicator: ๐ŸŸข Allowed or ๐Ÿ”ด Blocked
  • โš™๏ธ Disconnect Behavior โ†’ Configure what happens when manually disconnecting
    • ๐ŸŸข AUTO - Automatically disable killswitch
    • ๐ŸŸก PROMPT - Ask whether to disable
    • ๐Ÿ”ด NEVER - Keep killswitch active (internet blocked until reconnect)

Autostart Submenu (โš™๏ธ)

Shows current autostart state (๐ŸŸข ENABLED or ๐Ÿ”ด DISABLED)

  • Toggle Autostart โ†’ Enable/disable autoconnect on boot
  • Autoconnect Mode โ†’ Choose which server to connect to at boot
    • โšก Lowest Latency - Test all servers and connect to fastest
    • ๐Ÿ”„ Last Used - Connect to most recently used server
    • ๐ŸŽฒ Random - Connect to random server
    • ๐ŸŽฏ Specific Server - Connect to a specific chosen server (opens fzf picker)

Tests Submenu (๐Ÿงช)

When Disconnected:

  • โฑ๏ธ Latency Test (All Servers) โ†’ Parallel ping test of all servers with optional non-VPN comparison
  • ๐Ÿ“ˆ Performance History โ†’ View historical test results and averages

When Connected:

  • โฑ๏ธ Latency Test โ†’ Test ping to current server
  • โฑ๏ธ Latency Test (All Servers) โ†’ Parallel ping test of all servers with optional non-VPN comparison
  • ๐Ÿ’จ Speed Test โ†’ Download speed test on current server
  • ๐Ÿ’จ Speed Test (All Servers) โ†’ Sequential speed test of all servers with optional non-VPN comparison
  • ๐Ÿงช DNS Leak Test โ†’ Verify DNS queries route through VPN, not ISP
  • ๐Ÿ“ˆ Performance History โ†’ View historical test results and averages

Options Submenu (โš™๏ธ)

  • โž• Add New Server โ†’ Import .conf files from ~/Downloads with validation and duplicate detection
  • โž– Remove Server โ†’ Remove installed servers (with safety checks and cleanup)
  • ๐Ÿ” Auto-Recover โ†’ Toggle auto-reconnect daemon
    • Status indicator: ๐ŸŸข Active or ๐Ÿ”ด Inactive
  • ๐Ÿ”’ IPv6 Protection โ†’ Toggle IPv6 leak protection
    • Status indicator: ๐ŸŸข Enabled or ๐Ÿ”ด Disabled
  • โœ๏ธ Rename Interface โ†’ Change network interface name (default: wg0)
    • Shows current name: e.g., (wg0)
  • ๐Ÿ—‘๏ธ Uninstall LazyVPN โ†’ Complete uninstallation with confirmation

Performance History Details

When viewing performance history:

  • Summary View (no arguments): Shows all servers with average speeds, latencies, and test counts
  • Detailed View (with server name): Shows last 20 test results with timestamps
  • Non-VPN Data: Direct connection tests appear as ๐ŸŒ Direct (Non-VPN)

Uninstallation

LazyVPN includes a comprehensive uninstaller that ensures clean removal:

  • Access Methods:
    • Run lazyvpn-uninstall from a terminal
    • Select โš™๏ธ Options โ†’ ๐Ÿ—‘๏ธ Uninstall LazyVPN from the menu
  • Automatic Cleanup: The installer detects installation failures and automatically runs the uninstaller to clean up partial installations.
  • Config Preservation: During uninstallation, you'll be asked whether to keep your configuration files (VPN configs and performance history) or remove everything.
  • What Gets Removed:
    • All LazyVPN scripts from ~/.local/share/omarchy/bin/
    • Firewall killswitch rules
    • Sudoers configuration
    • Desktop integrations (menu entries, autostart files, keybindings)
    • Omarchy menu modifications
  • Safe Uninstall: If connected to a VPN, the uninstaller offers to disconnect for you - no need to leave the screen.

Note: The uninstaller is installed first during installation to ensure cleanup capability even if installation fails.

Roadmap

Future features and enhancements under consideration:

๐Ÿ” Encrypted Configuration Storage (Optional Feature)

  • Toggle-able Security: Optional encryption for stored .conf files (disabled by default)
  • Automatic Encryption: When enabled, encrypt .conf files before storing them in ~/.config/lazyvpn/wireguard/
  • Secure Cleanup: Offer to securely delete plaintext .conf files from ~/Downloads after import
  • Transparent Decryption: Decrypt configs on-the-fly when connecting, completely transparent to the user
  • Password Protection: Password/passphrase protection for the encrypted config vault

๐Ÿ”„ Auto-Failover (Partially Implemented)

  • Currently, the auto-recover daemon reconnects to the same server if a connection drops
  • Planned: If reconnection fails repeatedly, automatically failover to the next-quickest server to minimize downtime

Suggestions Welcome!

Have ideas for LazyVPN? Open an issue on the GitHub repository with your feature requests.

License

LazyVPN is released under the MIT License.

Copyright (c) 2025 blank-query

WireGuard is a registered trademark of Jason A. Donenfeld.

About

a script-based lazy wireguard vpn manager with full Omarchy integration

Topics

linux security privacy tui vpn vpn-manager wireguard protonvpn wireguard-vpn wireguard-ui mullvad-vpn omarchy omarchy-linux

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 2

lazyVPN for Omarchy Latest
Nov 17, 2025
+ 1 release

Packages

No packages published

Languages