VPN for Domain Controllers
-
Definitely ZeroTier as Dash says. Not only are they free and extremely powerful, they are open source and their lead architect is active here in ML!!
-
@Dashrender Thanks for suggesting this. I hadn't heard of it and have been looking at Pertino for over a year. Hmmm.
-
Can one device be attached to 2 networks?
-
@anonymous Yes. More than 2, actually.
-
Thanks!
-
If I were to use ZeroTier One, is would ZeroTier be able to see my data?
-
They are not suppose to be able to, but if you are really that worried about it, you can install your ZT controller on your own host, and leave them out of it altogether.
-
@Dashrender said:
They are not suppose to be able to, but if you are really that worried about it, you can install your ZT controller on your own host, and leave them out of it altogether.
I was thinking about that
This website is hard to use. do you have a link for server setup?
-
@anonymous said:
@Dashrender said:
They are not suppose to be able to, but if you are really that worried about it, you can install your ZT controller on your own host, and leave them out of it altogether.
I was thinking about that
This website is hard to use. do you have a link for server setup?
I've never done it, Like you, I'd have to surf around for instructions.
-
@Dashrender said:
I've never done it, Like you, I'd have to surf around for instructions.
Well a surfing I will go
-
@dafyre will be able to help you when he comes online. AD is pretty tricky when using ZT according to him. It's not bad if you're standing up a new AD if i remember correctly.
-
Should be no issue at all unless you are trying complicated things like split horizon.
-
@scottalanmiller said:
Should be no issue at all unless you are trying complicated things like split horizon.
And you install ZT on every node.
-
@Dashrender said:
@scottalanmiller said:
Should be no issue at all unless you are trying complicated things like split horizon.
And you install ZT on every node.
Of course. Trying to use a mesh VPN on just some nodes would solidly fall under "complicated" setups.
-
@anonymous The website is hard to use, although it looks nice and simple. They keep mentioning the running your own controller but I have yet to find the link to download it/instructions on how to implement it. I went around in circles last week going from FAQ to Documentation and back again.
-
Looks like the answer is here:
-
@anonymous said:
Looks like the answer is here:
Whew... Still recovering from Christmas and catching up on ML between bouts of being drug off by my son to play, lol.
I'd recommend using their hosted version. It is free, and easy to manage; the way the encryption is done, I do not believe that they can view your data, but I am no encryption expert and @adam-ierymenko would be the one to answer that question.
If you have any problems getting it set up and going, feel free to buzz me back here. Wife and kid are running me every which way but loose, so I'll reply when I can.
-
@anonymous I read that thread and I am taking away that the only way to run a controller is to use a linux box. Is this correct?
-
@wrx7m said:
@anonymous I read that thread and I am taking away that the only way to run a controller is to use a linux box. Is this correct?
That would make since and seems to be correct.
-
@wrx7m said:
@anonymous I read that thread and I am taking away that the only way to run a controller is to use a linux box. Is this correct?
Yes. You'd want to do that even if there were other options (unless FreeBSD was an option.) Running something like Windows would add a ton of bloat.