Thanks for sharing. I see this has been around a while, but I hadn’t run
into it myself yet.
Apple is currently doing something like this with IPSEC and IPv6 for iCloud users; pretty much any iCloud user is always on a private VPN with all their other iCloud devices. And there are commercial enterprise SD-WAN products and cloud providers that offer a similar approach for SMBs and branch offices. Azure and AWS offer almost exactly this between virtual networks, data centers, and regions, down to the private ASNs.
It’s nice to see a project built on open standards for the express purpose of playing with it and learning about it. Seems very much like something 44net could benefit from studying carefully.
From: KUN LIN dnwk@linkun.info
To: "44net@mailman.ampr.org" 44net@mailman.ampr.org Cc: Bcc: Date: Thu, 2 Dec 2021 18:48:49 +0000 Subject: [44net] DN42 for 44net?
Just discover this new thing where it will create mesh networks and even BGP via VPN tunnels. This maybe an interesting way for 44net to considering implement.
dn42 is a big dynamic VPN< https://en.wikipedia.org/wiki/Virtual_private_network%3E, which employs Internet technologies (BGPhttps://en.wikipedia.org/wiki/Bgp, whois database, DNShttps://en.wikipedia.org/wiki/Domain_Name_System, etc). Participants connect to each other using network tunnels (GRE< https://dn42.dev/howto/GRE-on-FreeBSD%3E, OpenVPN< https://dn42.dev/howto/openvpn%3E, WireGuard< https://dn42.dev/howto/wireguard%3E, Tinchttps://dn42.dev/howto/tinc, IPsechttps://dn42.dev/howto/IPsec-with-PublicKeys) and exchange routes thanks to the Border Gateway Protocol. Network addresses are assigned in the 172.20.0.0/14 range and private AS numbers are used (see registry< https://dn42.dev/services/Whois%3E) as well as IPv6 addresses from the ULA-Range (fd00::/8) –