@Kun
VPN is me, guilty…
Nate and I run ARIX and I’ve been experimenting with Wireguard VPN in Fremont.
Try using the approach with Chris, requesting IP's for BGP experimentation.
-Learning/Experimentation is one of the driving goals of ARDC.
For me, It was a hard-sell for getting IP’s for IX and VPN.
BTW: If anyone has a design for a VPN , DM me, I’d be interested in your approach !
Adam (KC7GDY)
On Feb 23, 2023, at 12:50 PM, KUN LIN via 44net
<44net(a)mailman.ampr.org> wrote:
My local coordinator forwards my case to Chris because I am asking for BGP.
I believe Nathan Sales KJ7DMC also has a /24 and runs wireguard for public at Fremont
location. I can't find his website right now.
Kun
Nathan Sales 34553 KJ7DMC
From: Mark Phillips <enicomms(a)gmail.com <mailto:enicomms@gmail.com>>
Sent: Thursday, February 23, 2023 10:24
To: KUN LIN <dnwk(a)linkun.info <mailto:dnwk@linkun.info>>
Cc: Joshua McDonald <josh(a)2cold.net <mailto:josh@2cold.net>>; Kris Kirby
<kris(a)catonic.us <mailto:kris@catonic.us>>; ken boyle <ken(a)kc2idb.net
<mailto:ken@kc2idb.net>>; David Harris <KE6GAE(a)hotmail.com
<mailto:KE6GAE@hotmail.com>>; 44net(a)mailman.AMPR.org
<mailto:44net@mailman.AMPR.org> <44net(a)mailman.ampr.org
<mailto:44net@mailman.ampr.org>>
Subject: Re: [44net] Re: IPIP Tunnel
Chris is not the only issuer of numbers in this space. My group manages the allocations
for 10 States here on the East Coast. Find your local co-ordinator and ask him.
AFAIK, we are the ONLY group offering Wireguard VPN that you can actually use.
Chris (FEF) is trying to get away from the regional allocation of IP addresses and simply
issue them from the top of the pile. This suggests to me that ARDC are aligning themselves
for another selloff? If they can get everyone below 44.128/10 they can sell that off too?
On Thu, Feb 23, 2023 at 12:41 PM KUN LIN <dnwk(a)linkun.info
<mailto:dnwk@linkun.info>> wrote:
Well, Chris denied my /24 request to build a Wireguard VPN service. He claimed 44Net
would have a official one out there. How did you get your assignment approved?
Kun
From: Mark Phillips <enicomms(a)gmail.com <mailto:enicomms@gmail.com>>
Sent: Wednesday, February 22, 2023 16:21
To: KUN LIN <dnwk(a)linkun.info <mailto:dnwk@linkun.info>>
Cc: Joshua McDonald <josh(a)2cold.net <mailto:josh@2cold.net>>; Kris Kirby
<kris(a)catonic.us <mailto:kris@catonic.us>>; ken boyle <ken(a)kc2idb.net
<mailto:ken@kc2idb.net>>; David Harris <KE6GAE(a)hotmail.com
<mailto:KE6GAE@hotmail.com>>; 44net(a)mailman.AMPR.org
<mailto:44net@mailman.AMPR.org> <44net(a)mailman.ampr.org
<mailto:44net@mailman.ampr.org>>
Subject: Re: [44net] Re: IPIP Tunnel
You create one when you build a Wireguard server on your BGP host.
On Wed, Feb 22, 2023 at 6:42 PM KUN LIN <dnwk(a)linkun.info
<mailto:dnwk@linkun.info>> wrote:
How did you get the Wireguard VPN account assigned to you?
Kun
From: Mark Phillips via 44net <44net(a)mailman.ampr.org
<mailto:44net@mailman.ampr.org>>
Sent: Monday, February 13, 2023 13:18
To: Joshua McDonald <josh(a)2cold.net <mailto:josh@2cold.net>>
Cc: Kris Kirby <kris(a)catonic.us <mailto:kris@catonic.us>>; ken boyle
<ken(a)kc2idb.net <mailto:ken@kc2idb.net>>; David Harris <KE6GAE(a)hotmail.com
<mailto:KE6GAE@hotmail.com>>;44net@mailman.AMPR.org
<mailto:44net@mailman.AMPR.org> <44net(a)mailman.ampr.org
<mailto:44net@mailman.ampr.org>>
Subject: [44net] Re: IPIP Tunnel
I was just going to add Wireguard VPN as a solution for the Cellphone hotspot.
Available at 10 Hamgates and many other nodes. Mikrotik V7 OS works well. Go here for a
howto
http://hamgatepa.ampr.org/docs/Programming%20the%20MikroTik%20hAP%20lite%20…
<http://hamgatepa.ampr.org/docs/Programming%20the%20MikroTik%20hAP%20lite%20for%2044net%20VPN%20use.pdf>
On Mon, Feb 13, 2023 at 12:44 PM Joshua McDonald via 44net <44net(a)mailman.ampr.org
<mailto:44net@mailman.ampr.org>> wrote:
On the client side, using Mikrotik can be done with Wireguard if on RouterOS v7. Use an
AP as a client to the Cellular Hotspot and build Wireguard tunnel back to “VPN
Concentrator” somewhere.
Of course would require someone on remote end to have public IP to terminate tunnel and
route the 44net subnet allocation.
I have done this, but both ends of tunnel and subnet allocation are all in my control.
If interested, I can go more in depth.
On Feb 13, 2023, at 12:21 PM, Kris Kirby via
44net <44net(a)mailman.ampr.org <mailto:44net@mailman.ampr.org>> wrote:
I don't think this is possible with a hotspot
from a cellular
connection.
You are behind a nat on cellular, which shares one public IP with many
and doesn't allow routable ports/protocols.
The only solution would be to get a public IP address from a home
connection or a vps, and setup a VPN to access it from remote.
I could be wrong, but that is my understanding at this point.
Not only that, but some VPSs do not allow loading the IPIP module, which
means that a full KVM virtualized private server is the only solution
short of setting up a VPS to announce a /24 via BGP.
--
Kris Kirby, KE4AHR
Disinformation Architect, Systems Mangler, & Network
Mismanager_______________________________________________
44net mailing list -- 44net(a)mailman.ampr.org <mailto:44net@mailman.ampr.org>
To unsubscribe send an email to 44net-leave(a)mailman.ampr.org
<mailto:44net-leave@mailman.ampr.org>
_______________________________________________
44net mailing list -- 44net(a)mailman.ampr.org <mailto:44net@mailman.ampr.org>
To unsubscribe send an email to 44net-leave(a)mailman.ampr.org
<mailto:44net-leave@mailman.ampr.org>
_______________________________________________
44net mailing list -- 44net(a)mailman.ampr.org <mailto:44net@mailman.ampr.org>
To unsubscribe send an email to 44net-leave(a)mailman.ampr.org
<mailto:44net-leave@mailman.ampr.org>