Earlier today I was helping a user who was trying to setup a VPN. This user was trying to setup a VPN for geo-IP reasons. They did not realize that the VPN requires 2 endpoints -- one local to them, and one remote (such as a commercial VPN provider). When the user looked at various guides including the OpenWrt wiki articles, it wasn't immediately apparent to them that there is another 'side' to the connection.
This theme has come up from time to time. I'm wondering if anyone has any links to good explainers that emphasize the fact that the tunnel needs 2 endpoints. Or, if not, maybe I'll try to write something for the OpenWrt wiki.