Subj : fsxNet Feedback (ZeroTier
To   : N1uro
From : Oli
Date : Sun May 16 2021 03:39 pm

N1uro wrote (2021-05-14):

Ol>> I agree. It also would not qualify as Open Source software /
Ol>> license.

N> Just to try and help offer another possible solution to this issue as a
N> network engineer:

N> Why not investigate OpenVPN?

p2p connections work by default in ZeroTier. Does OpenVPN do any NAT hole punching? A known and simpler alternative would be tinc. OpenVPN has also become kind of old-tech. Is there anything wireguard wouldn't do simpler and better (for our use case)?

N> A dedicated hub feed to a european hub
N> can set up DNS locally to feed a hub in europe over OpenVPN using either
N> TCP or UDP and choose ports, and maintain custom certs that may have a
N> long expiration date on them... and then it'd be up to that european hub
N> to feed the rest of europe - insuring that their laws are followed.

Personally I'm not interested in a top-down approach with admin(s) maintaining certs and granting and revoking access. I would call it unnecessary centralization (bullshit power & small bus factor). FTN are on the lower layer decentralized and designed as "cooperative anarchy".

It's not that I don't appreciate your initiative to setup OpenVPN for the network, I just doubt that standard VPNs are a good fit for FTN.

(not sure what the European hub and laws part is about)

---
* Origin: . (21:3/102)

You are viewing proxied material from cvs.synchro.net. The copyright of proxied material belongs to its original authors. Any comments or complaints in relation to proxied material should be directed to the original authors of the content concerned. Please see the disclaimer for more details.