Do doubt that OpenVPN will give you a more secure implementation and is a good way to go if you can but if you need a simpler case you can use SMTP-you could configure sendmail to listen on more than one port...Preserve port 25 for you legacy processes and another listening ports for this purpose.