Thank you for the feedback.
L2TP/IPsec was my first thought. However, when I look at the contrib,
https://wiki.contribs.org/Smeserver-libreswan-xl2tpd, it bears a warning that gave me pause.
SoftEther, while far more complex, appears to be well supported and feature rich.
In general, I prefer to use the built-in features, so enabling L2TP/IPsec would be preferred. However, the features of SoftEther are enticing.
As an aside, the pressure I face today is that I am far away from the server, and need to implement a solution to allow use of the VPN for internal services, like user-manager and other things. Anything attempted needs to be easily reversed or adjusted via an ssh connection.