Re: [PLUG] VPN Recommendation Wanted

brent saner via plug on 2 Aug 2025 13:53:14 -0700

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] VPN Recommendation Wanted

From: brent saner via plug <plug@lists.phillylinux.org>
To: "Philadelphia Linux User's Group Discussion List" <plug@lists.phillylinux.org>
Subject: Re: [PLUG] VPN Recommendation Wanted
Date: Sat, 2 Aug 2025 16:52:57 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1754167989; x=1754772789; darn=lists.phillylinux.org; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :from:to:cc:subject:date:message-id:reply-to; bh=VEKnoTYAgoe01kh1qYmj5QzVzCEoUMgrU8cQQ17f0v8=; b=bwqVvgKZlx8aAJQIMxg5ohBy8F0XzXgU8WmPylMkJRsXOdWUVLx2rPA1ARD6KpWcHm zkKo90psLr0UUj5HTSen2AcaQLOKI72PcGiudiGm2O87A7p189kZnKLS1VaU/0cYH8KX uf/MW+mbD0oKvcavdQQ6emQADy7AVMTNN/z44SYTEsf4xMGQEMKrb/ImoRg8VYn7eWt2 zUCPH5BmZp4xqBN1IuvOT/PE3Q8nitoBbwtllznUD3sshGHMghL0VAN9AeGqDe4+G0yv DJYkZSnFmxWiFey8IZKgs6i8udgAGjXFFtlxwzi+yFSvAnsiwD7hfszumcCUw0Wip1f9 Dn8Q==
Reply-to: brent saner <brent.saner@gmail.com>
Sender: "plug" <plug-bounces@lists.phillylinux.org>

On Sat, Aug 2, 2025, 16:25 Jonathan Caicedo <jonathan@jcaicedo.com> wrote:

I don’t want to split hairs - whatever you think WireGuard is or isn’t - it can help fulfill Casey’s needs - so it’s worth including in the conversation.

I'll stick with the IETF on this, thanks. RFC 4949.

All VPNs are tunnels. Not all tunnels are VPNs. No VPN is a peer-to-peer tunnel. No peer-to-peer tunnel is a VPN. Yes, everyone calling WireGuard a VPN is still wrong. Inattention to detail, lax terminology usage, and insistence upon their proliferation leads to breakage. Welcome to prod.

Using a VPN vs. a peer-to-peer tunnel has direct impact on the context of the client and the scope of the link *which is why there is a distinction in the first place*.

A P-to-P, *by default and intent*, is a 1:1 connection.

A VPN, *by default and intent*, is a 1:(n<->n) connection.

The former requires inherent trust of a single foreign host. The latter requires inherent trust of multiple - potentially an unknown number- of foreign hosts.

Learn something instead of doubling down on being incorrect.

___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

Follow-Ups:
- Re: [PLUG] VPN Recommendation Wanted
  - From: Matt Mossholder via plug <plug@lists.phillylinux.org>

References:
- Re: [PLUG] VPN Recommendation Wanted
  - From: brent saner via plug <plug@lists.phillylinux.org>
- Re: [PLUG] VPN Recommendation Wanted
  - From: Jonathan Caicedo via plug <plug@lists.phillylinux.org>

Prev by Date: Re: [PLUG] VPN Recommendation Wanted
Next by Date: Re: [PLUG] VPN Recommendation Wanted
Previous by thread: Re: [PLUG] VPN Recommendation Wanted
Next by thread: Re: [PLUG] VPN Recommendation Wanted
Index(es):
- Date
- Thread