| Walt Mankowski via plug on 11 Sep 2023 12:13:55 -0700 |
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
| [PLUG] Tailscale talk? (was Outgoing VPN for Entire Network) |
Changing the subject just a bit here. I've heard a lot of buzz about Tailscale but I don't really understand what it is. Is it sufficiently open source to be a topic for an upcoming PLUG meeting? Walt On Mon, Sep 11, 2023 at 03:08:19PM -0400, Chris Thistlethwaite via plug wrote: > Going to answer your question in a very roundabout way. I have a few > routers from https://www.gl-inet.com/ initially started off buying one for > a travel router. Picked up a few more for family and friends when they > needed something setup that I'd have to support. They run OpenWRT and have > a shiny open source UI layered on top. Each have Wireguard server and > client built-in and are well documented on setting up many configs. So, if > you ran your own Wireguard node, say in Linode, then you could connect a > gl-inet router to that and all the traffic served through the router would > exit the Linode node. I'm not sure how to connect that same setup to other > VPN providers, but I'm pretty sure it would be written up somewhere on > their support site. > > A second suggestion, I got sucked into Tailscale based on them sponsoring > some of the podcasts I listen too. Figured I'd try it out, see what all the > hype is about. You wouldn't believe how easy it is to use. I'm totally > convinced it's magic and somehow broken because it's that easy to use. > There is also Headscale https://github.com/juanfont/headscale if you wanted > to selfhost the "controller" side of things instead of using Tailscale. > Surprise surprise, it's basically a wrapper for Wireguard. So either way > your answer is Wireguard for VPN. > > -Chris T. > > On Mon, Sep 11, 2023 at 2:48 PM Keith C. Perry via plug < > plug@lists.phillylinux.org> wrote: > > > You're on the right track... regardless of how complex the internals of > > your net are, eventually you need to leave your network via a router so it > > that device is where you would set up OpenVPN so traffic flowing through it > > is sent to your VPN end point. > > > > I'm guessing you might not already have a separate router for your net so > > what you might want to play around with first is a VM or old hardware where > > you build up a router that runs OpenVPN and then manually point a system to > > it to confirm operation. If you are building something custom, make sure > > you enable IP forwarding in the kernel. If you are going to use a more > > network centric distro like OpenWRT (which has x86 images now so its really > > easy to build small x86 routers too) it should work right out the box (and > > iirc, OpenWRT has either an OpenVPN module or its already there to be > > configured). > > > > > > ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ > > Keith C. Perry, MS E.E. > > Managing Member, DAO Technologies LLC > > (O) +1.215.525.4165 x2033 > > (M) +1.215.432.5167 > > www.daotechnologies.com > > > > ------------------------------ > > *From: *"Philadelphia Linux User's Group Discussion List" < > > plug@lists.phillylinux.org> > > *To: *"Philadelphia Linux User's Group Discussion List" < > > PLUG@Lists.PhillyLinux.org> > > *Sent: *Monday, September 11, 2023 2:32:49 PM > > *Subject: *[PLUG] Outgoing VPN for Entire Network > > > > I'd like to set up a gateway for my home network where everything gets > > routed through a VPN. This would be similar to the way PiHole becomes > > the whole-house ad blocker for my entire home network. > > > > I assume I need to set up a linux box that acts as a gateway for the > > home network, runs vpn software that connects to a commercial VPN > > service. I've been looking for a tutorial on the web, but haven't found > > one. > > > > Anybody know of a good starting point? > > > > TIA! > > > > -- > > LEGAL NOTICE: This eMail contains private, personal, and/or privileged > > information and is only for the intended recipient(s). In fact, you > > really should consider yourself honored to even be cc'd on this > > tremendously important communication. The author spent literally > > seconds composing this magnificent opus of rational thought and > > deductive logic. Unfortunately, it has probably been based on > > inaccurate data, which really stinks because this eMail would have been > > truly awesome! If you have received this eMail in error, we > > respectfully DEMAND that you immediately delete it and inform the sender > > that you have received it in error. Then, just to be safe, you should > > reformat your hard drive, shave your head, renounce all material > > possessions (which are really controlling your life anyway), and join an > > end-of-times cult somewhere. Once there, you must reconsider all the > > terrible choices you've made in your life, and promise never to confuse > > "sex" with "gender" again. Of course, this assumes you have already > > come to terms with your inherent whiteness, AND that you have learned > > the lyrics to The Internationale. "Arise, wretched of the earth! Arise, > > convicts of hunger..." > > (https://en.wikipedia.org/wiki/The_Internationale) We sincerely hope > > you are able to get your medication stabilized and no longer have > > that recurring dream where you're alone in a large crowd, standing > > naked in a vat of chocolate Yoo-hoo. BTW, Yoo-hoo really is an > > underrated beverage. It’s chocolatey, yet suprisingly refreshing. Pick > > up a 6-pack today, and tell your friends! > > > > > > ___________________________________________________________________________ > > Philadelphia Linux Users Group -- > > http://www.phillylinux.org > > Announcements - > > http://lists.phillylinux.org/mailman/listinfo/plug-announce > > General Discussion -- > > http://lists.phillylinux.org/mailman/listinfo/plug > > ___________________________________________________________________________ > > Philadelphia Linux Users Group -- > > http://www.phillylinux.org > > Announcements - > > http://lists.phillylinux.org/mailman/listinfo/plug-announce > > General Discussion -- > > http://lists.phillylinux.org/mailman/listinfo/plug > > > > > -- > -Chris > ___________________________________________________________________________ > Philadelphia Linux Users Group -- http://www.phillylinux.org > Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce > General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug ___________________________________________________________________________ Philadelphia Linux Users Group -- http://www.phillylinux.org Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug