products/vpn: add introduction

content/u/products/vpn-server-as-a-service/contents.lr

@@ -20,12 +20,11 @@ nav_classes: navbar-dark
 ---
 FIXMEimage: /u/image/cards/supportsystem.jpg
 ---
-feature1_title: Scalable
+feature1_title: Ready for teams
 ---
 feature1_text:
-Need just a single VPN server? Easy, we got you covered.
+
-Need 2, 3 or many more VPN servers? No problem, deploy and manage them
+
-exactly the same.
 ---
 feature2_title: Made for developers with GitOps
 ---
@@ -46,22 +45,15 @@ content1_text:
 ## VPN Server as a Service (VPNSaaS)
 
 This service allows you to manage VPN connections on your own VPN
-servers. You manage zone files and zone records in the standard BIND
+servers. You manage client configurations using the standard
-format.
+Wireguard configuration format.
-
-### Not included
-
-This service does not register a domain or manage your SSL
-certificates. It is purely allowing you to manage your VPN zones files
-without having to run your own VPN server.
-
-The VPN server does not support IXFR or AXFR request. The
-distribution of VPN information is assumed to be done by other means
-such as git.
 
 ## Features
 
 The provided VPN servers are reachable via IPv6 and IPv4.
+
+They are available in IPv6 only and dual stack (IPv6 + IPv4) versions.
+
 The VPN servers are configured to pull from the configured repository
 every 5 minutes.
 
@@ -75,20 +67,39 @@ There are a few simple steps required:
 * Create a git repository anywhere you want - for instance on
   [code.ungleich.ch](https://code.ungleich.ch) with an [ungleich
   account](https://account.ungleich.ch).
-* Create the zone files in the directory "zones/"
+* Create a wireguard configuration file named wg0.conf
-* Every file in the zones/ directory becomes a zone served by the VPN
-  server
-* The zone ("domain") is infered from the filename
-* Symbolic links are supported, so you can have different zones with
-  the same content
 
+## VPN Server modes
+
+The needs for VPN protection are different depending on your situation
+and we show some common modes on how to use the VPN server.
+
+### IPv6 only
+
+If you want to enable your clients with IPv6, you can assign
+IPv6 addresses or IPv6 subnetworks to the clients.
+
+### Dedicated Public IPv4
+
+If you want your client to be reachable via IPv4 from the outside, you
+can make them reachable by assigning the client a dedicated public
+IPv4 address.
+
+This mode can be combined with the IPv6 mode above.
+
+### Shared Public IPv4
+
+If you want your your clients to reach the IPv4 Internet via a shared
+public IPv4 address. This is the "typical VPN mode".
+
+This mode can be combined with the IPv6 mode above.
 
 ## Fully Open Source and IPv6 enabled
 
 The VPN is completely based on Open
 Source Software components. From the operating system to the software
 stack, nothing is closed. This service is based
-on [Knot-VPN](https://www.knot-vpn.cz/).
+on [Wireguard](https://www.wireguard.com/).
 
 ## Zero Carbon Hosting
 
@@ -99,13 +110,14 @@ Data Center.](httsp://datacenterlight.ch)
 
 Your own VPN server is available in 2 versions:
 
-* IPv6 only VPN server with a /48 network:
+* IPv6 only VPN server with a /48 network: 37 CHF/month
+* Dual stack (IPv6+IPv4) VPN server with a /48 network: 46.5 CHF/month
 
-including IPv6 and IPv4 reachability is 17
+Every additional public IPv6 /48 network is 5 CHF/month.
-CHF/month with a 25 CHF setup fee.
+Every additional public IPv4 address is 9.5 CHF/month.
+
+The one time setup fee is 25 CHF.
 
 ## How to order
 
-As the support system can be setup for very different use cases, we
+You can order via **support -at- ungleich.ch**.
-recommend to contact us at **support -at- ungleich.ch** to discuss how
-you would like to have your system setup.