On 7/19/22 2:16 PM, Rob PE1CHL via 44net wrote:
I hope that, rather sooner than later, we can offer a new connectivity option for AMPRnet that does not require tricks in your router, does not depend on a static address, works with CGNAT, etc.
We did this here in Tampa. It works across NAT44444 (yes 5 nats), and even across another hamwan remote. https://wiki.w9cr.net/index.php/HamWAN_Remote_Site
If anyone wants a connection, hit me up directly. The hub is tampa-vpn.tampa.flscg.org, give it a ping/traceroute and see if it's close to you.
The objective is to use a modern standard VPN instead of IPIP (wireguard, openvpn, l2tp/ipsec or whatever) to connect to a relatively local point of presence that will handle the further routing towards other users and the internet for you, with good latency and reliability.
The IP mesh doesn't work well, it's got the same issues that all the SDWAN vendors have for direct connections.
HamWAN Tampa announces our IP space, from a single point, but we could actually install multiple head end routers and spread this out.
We need to lower the bar for making connections. Like you, most people want to put applications online rather than fighting with protocols that are not easy to deploy anymore.
Well for anything less than a /24, yes. If it's a /24, do BGP.