Vpn
I have deployed a monitoring VPS somewhere on someone else’s computer and I want all my other servers to send it their metrics and logs and alerts etc. But in order to cruise the Wild Wild Web in a safer way, I connect all those nodes using WireGuard.
Recently I deployed a FreeBSD instance in such a way that it has to initiate the connection to the OpenBSD monitoring server using WireGuard. That’s what those notes are about.Continue reading...
WireGuard is a new coming to OpenBSD 6.8 and it looks like a simple and efficient way to connect computers.
I own a few VPS (hello Vultr, hello OpenBSD.amsterdam) that tend to be connected through filtered public services and/or SSH tunnels. And that’s neither efficient nor easy to manage. Here comes the wg(4) era where all those peers will communicate with a bit more privacy and ease of management.Continue reading...
I use VPN to remotely connect to my home-LAN when I’m away. I’ve tried may kinds of VPN ; from IPsec (point-to-point) to SSL through L2TP. I found that the easiest one to implement, when using various OS client, was VPN/SSL. And the easiest software to be used by any OS, or at least any I use, was OpenVPN. From Windows to OSX through NetBSD, there’s an available binary. So let’s create the server on OpenBSD.Continue reading...
In my actual configuration, OpenVPN provides a remote DNS and only routes traffic to the internal LAN. Every public traffic is kept out of the VPN. Yesterday, I wanted to route every traffic through my VPN ; to masquerade my 3G IP address :-DContinue reading...
Now that I have an OpenVPN server running , I’d like to get a fixed IP from it so that I can put ACL in my LAN access.Continue reading...