I-Headscale, ukuphunyezwa komthombo ovulekileyo we-Tailscale

Zimbalwa iintsuku ezidlulileyo besithetha apha kwibhlog malunga neFirezone, Esona sixhobo siluncedo sokwenza iiseva zeVPNGuard esekwe kwiWireGuard.

Kwaye ngoku eli lixesha lokuba uthethe malunga nento efanelekileyo ebizwa ngokuba yi "Headscale" eyiyo Iprojekhthi ephuhliswayo njengophumezo lomthombo ovulekileyo icandelo lomncedisi ukusuka kwinethiwekhi yeTailscale VPN, ekuvumela ukuba wenze i-VPN iinethiwekhi ezifanayo neTailscale kwindawo yakho, ngaphandle kokudityaniswa neenkonzo zomntu wesithathu.

Isikali somsila ivumela ukudibanisa inani elingenakuphikiswa lemikhosi esasazeke ngokwenethiwekhi, eyakhelwe kumfanekiso womnatha womnatha, apho node nganye inxibelelana ngokuthe ngqo nezinye iinxalenye (P2P) okanye iindawo ezingabamelwane, ngaphandle kokuhambisa ukugcwala ngabantu ngokusebenzisa iiseva zangaphandle zomboneleli weVPN.

ngaphandle koko Indlela esekwe kwi-ACL kunye nolawulo lofikelelo ziyaxhaswa Kwaye ukuze kumiselwe amajelo onxibelelwano kwiimeko zokusetyenziswa kwabaguquleli beedilesi (i-NAT), iindlela ze-STUN, ICE kunye ne-DERP ziyaxhaswa (ezifanayo kwi-TURN, kodwa ngokusekwe kwi-HTTPS). Ukuba ijelo lonxibelelwano phakathi kweendawo ezithile livaliwe, inethiwekhi inokuphinda-hamba kwindlela yezithuthi ngezinye iindlela.

Umsila sUmahluko kwiprojekthi yeNebula Ekwayilelwe kwakhona ukwenza uthungelwano lwe-VPN olusasaziweyo olunendlela enemingxunya, kusetyenziswa umgaqo olandelwayo we-Wireguard ukuhlela ukudluliselwa kwedatha phakathi kweendawo, Ngelixa uNebula esebenzisa uphuhliso lweprojekthi yeTinc, esebenzisa i-AES-256 algorithm ukubethela iipakethe ze-GSM (iWiverguard isebenzisa ukubethela kweChaCha20, ekuvavanyeni kubonisa ukusebenza okuphezulu kunye nokuphendula).

Enye iprojekthi efanayo, i-Innernet, iphuhliswa ngokwahlukeneyo, apho umthetho olandelwayo we-Wireguard ikwasetyenziselwa ukutshintshiselana ngedatha phakathi kweendawo. Ngokuchaseneyo, ukusuka kwi-Tailscale nase-Nebula kwi-Innernet inkqubo eyahlukileyo yokwahlulahlula ukufikelela ngokusekwe kwi-ACL yasetyenziswa Iilebheli azibophelelwanga kwiindawo ezizodwa kunye nakwi-subnets ekwahlulweni nasekuhlukanisweni kwamanqanaba ahlukeneyo eedilesi ze-IP, njengakwinethiwekhi eqhelekileyo ye-Intanethi.

Kwakhona, i-Innernet isebenzisa iRust endaweni yeGo kwaye kufanelekile ukuba sikhankanye ukuba i-Innernet 1.5 ephuculweyo ngenkxaso enqamlezileyo yeNAT yakhutshwa kwiintsuku ezimbalwa ezidlulileyo. Kukho neprojekthi yeNetmaker, ekuvumela ukuba uqhagamshele iinethiwekhi kunye neendlela ezahlukeneyo usebenzisa iWayguard, kodwa ikhowudi yayo inikezelwa phantsi kwe-SSPL (iServer Side Public License), engavulekanga ngenxa yobukho beemfuno zocalucalulo.

I-Tailscale isasazwa kusetyenziswa imodeli yeFreemium yasimahla umntu ngamnye kunye nokufikelela okuhlawulelweyo kweenkampani kunye namaqela. Izinto zeklayenti yeTailscale, ngaphandle kwezicelo zemizobo yeWindows kunye neMacOS, ziphuhliswa ngohlobo lweeprojekthi zomthombo ovulekileyo phantsi kwelayisensi ye-BSD.

Isoftware ekhutshelwa ngaphandle yetailscale eqinisekisa abathengi abatsha, uququzelela ulawulo oluphambilis kwaye iququzelele unxibelelwano phakathi kweendawo ezinesivumelwano. Iprojekthi ye-Headscale ijongana nale ngxaki kwaye ibonelela ngokusetyenziswa okuvulekileyo komthombo ovulekileyo wamacandelo eseva ye-Tailscale.

I-Headscale ithatha indawo yokutshintsha izinto eziphambili kuluntus kwaye yenza imisebenzi yokuhambisa iidilesi ze-IP kunye nokusabalalisa iitafile zendlela phakathi kweendawo.

Kwimo yayo yangoku, I-Headscale isebenzisa onke amanqaku aphambili kwiseva yolawulo, Ngaphandle kwenkxaso yeMagicDNS kunye Smart DNS. Ukuthi ngqo, ixhasa imisebenzi yokubhalisa iindawo (nangapha kwewebhu), lungisa inethiwekhi ukongeza okanye ukususa iindawo, ukwahlula ii-subnets usebenzisa izithuba zamagama (unokwenza inethiwekhi yeVPN yabasebenzisi abaninzi), hlela ukufikelela okwabelwanayo ukusuka kwiindawo ukuya kwii-subnets kwiindawo ezahlukeneyo zamagama, ulawulo lolawulo (kubandakanya nokunikezela iindawo zokuphuma ukufikelela kwihlabathi elingaphandle), ukufikelela ekwabelwanayo nge-ACL, kunye nokuphunyezwa kwe-DNS.

Ikhowudi ye-Headscale ibhaliwe kwi-Go kwaye ihanjiswa phantsi kwelayisensi ye-BSD. Le projekthi iphuhliswa nguJuan Font we-European Space Agency.

Okokugqibela, ukuba unomdla wokwazi okungakumbi ngayo, unokujonga iinkcukacha Kule khonkco ilandelayo.


Umxholo wenqaku uyabambelela kwimigaqo yethu imigaqo yokuziphatha yokuhlela. Ukuxela impazamo cofa apha.

Yiba ngowokuqala ukuphawula

Shiya uluvo lwakho

Idilesi yakho ye email aziyi kupapashwa.

*

*

  1. Uxanduva lwedatha: UMiguel Ángel Gatón
  2. Injongo yedatha: Ulawulo lwe-SPAM, ulawulo lwezimvo.
  3. Umthetho: Imvume yakho
  4. Unxibelelwano lwedatha: Idatha ayizukuhanjiswa kubantu besithathu ngaphandle koxanduva lomthetho.
  5. Ukugcinwa kweenkcukacha
  6. Amalungelo: Ngalo naliphi na ixesha unganciphisa, uphinde uphinde ucime ulwazi lwakho.