No need to use UCSD. Cloud based server(s) work just fine. Places like AWS drip with bandwidth.
Is AWS able to run an IPIP gateway? I am currently trying to migrate an IPIP gateway from the "Hosted Raspberry Pi" that it is now to a VM that is being offered as a replacement, but it turns out that the "Apache Cloudstack" that this (and apparently many other) hoster uses to deploy VMs is unable to pass other network traffic than TCP and UDP. (and replies to outgoing traffic)
Good enough for OpenVPN and will probably work with IPsec and other VPN protocols, but not suitable for an IPIP gateway that also accepts incoming traffic. I am now looking for a solution. Of course I can make a VPN to our gateway, but this system was a test environment for an IPIP gateway. When IPIP goes away, I no longer need it. However, I could also use it to draft an example of how to setup a VPN service on a Linux machine.
Rob
You can also host it in vultr. I would have to check, but IPIP should not be a problem there and it costs indeed about 5$ per month
Ruben - ON3RVH
On 22 Jul 2019, at 18:20, Rob Janssen via 44Net 44net@mailman.ampr.org wrote:
No need to use UCSD. Cloud based server(s) work just fine. Places like AWS drip with bandwidth.
Is AWS able to run an IPIP gateway? I am currently trying to migrate an IPIP gateway from the "Hosted Raspberry Pi" that it is now to a VM that is being offered as a replacement, but it turns out that the "Apache Cloudstack" that this (and apparently many other) hoster uses to deploy VMs is unable to pass other network traffic than TCP and UDP. (and replies to outgoing traffic)
Good enough for OpenVPN and will probably work with IPsec and other VPN protocols, but not suitable for an IPIP gateway that also accepts incoming traffic. I am now looking for a solution. Of course I can make a VPN to our gateway, but this system was a test environment for an IPIP gateway. When IPIP goes away, I no longer need it. However, I could also use it to draft an example of how to setup a VPN service on a Linux machine.
Rob
44Net mailing list 44Net@mailman.ampr.org https://mailman.ampr.org/mailman/listinfo/44net
I use Free Range Cloud for 44Net stuff. Their smallest VPS is $4.99 USD and there is no filtering that I have run into. I have my networks advertised with BGP to a Debian VM and then use an interesting mix of IPSec, OpenVPN, and Wireguard to tunnel the networks from the VPS into the ham stuff via various cable modem gateways. I also run an OpenVPN client server where individual repeater controllers or hotspots can get assigned a 44Net IP address directly to have better non-NAT connectivity. FRC has been extremely cooperative and supporting of our work.
I'm planning to document how to do everything we've done once some final things are put in place.
I'm also looking at how to directly offer some point services more widely as needed.
Jason N8EI
-----Original Message----- From: 44Net 44net-bounces+jason=mfamily.org@mailman.ampr.org On Behalf Of Ruben ON3RVH via 44Net Sent: Monday, July 22, 2019 12:30 PM To: AMPRNet working group 44net@mailman.ampr.org Cc: Ruben ON3RVH on3rvh@on3rvh.be Subject: Re: [44net] Adding VPN server at UCSD ?
You can also host it in vultr. I would have to check, but IPIP should not be a problem there and it costs indeed about 5$ per month
Ruben - ON3RVH
On 22 Jul 2019, at 18:20, Rob Janssen via 44Net 44net@mailman.ampr.org wrote:
No need to use UCSD. Cloud based server(s) work just fine. Places like AWS drip with bandwidth.
Is AWS able to run an IPIP gateway? I am currently trying to migrate an IPIP gateway from the "Hosted Raspberry Pi" that it is now to a VM that is being offered as a replacement, but it turns out that the "Apache Cloudstack" that this (and apparently many other) hoster uses to deploy VMs is unable to pass other network traffic than TCP and UDP. (and replies to outgoing traffic)
Good enough for OpenVPN and will probably work with IPsec and other VPN protocols, but not suitable for an IPIP gateway that also accepts incoming traffic. I am now looking for a solution. Of course I can make a VPN to our gateway, but this system was a test environment for an IPIP gateway. When IPIP goes away, I no longer need it. However, I could also use it to draft an example of how to setup a VPN service on a Linux machine.
Rob
44Net mailing list 44Net@mailman.ampr.org https://mailman.ampr.org/mailman/listinfo/44net
_________________________________________ 44Net mailing list 44Net@mailman.ampr.org https://mailman.ampr.org/mailman/listinfo/44net
-
Jason McCormick -
Rob Janssen -
Ruben ON3RVH