Re: VPN recommendations?

[joy () cleverhack com]

Hello NANOG,

My name is Joy Larkin and I'm actually a long-time years-long lurker on 
the NANOG list (I have v odd hobbies) and I am also ZeroTier's Head of 
Marketing. I know I'm not supposed to be too promotional on here, but 
I'd love to see some of you pick up ZT.

Our founder, Adam Ierymenko just did a talk at Networking Field Day 27, 
here are two of the recordings from that session:

* ZeroTier The Planetary Data Center
    * https://www.youtube.com/watch?v=T2BbrqpnMAE

* ZeroTier Technical Deep Dive
    * https://www.youtube.com/watch?v=VhQ30bVF3_s

If you have questions, let me know - you can reach me at 
joy.larkin () zerotier com

Best,
-Joy

On 2022-02-10 10:12, Mike Lyon wrote:
> How about running ZeroTier on those Linux boxes and call it a day?
>
> https://www.zerotier.com/
>
> -Mike
>
> > On Feb 10, 2022, at 10:07, David Guo via NANOG <nanog () nanog org>
> > wrote:
>
> > 
> >
> > You may try WireGuard and use ddns
> >
> > From: NANOG <nanog-bounces+david=xtom.com () nanog org> On Behalf Of
> > William Herrin
> > Sent: Friday, February 11, 2022 2:02 AM
> > To: nanog () nanog org
> > Subject: VPN recommendations?
> >
> > Hi folks,
> >
> > Do you have any recommendations for VPN appliances? Specifically: I
> > need to build a site to site VPNs at speeds between 100mpbs and 1
> > gbit where all but one of the sites are behind an IPv4 NAT gateway
> > with dynamic public IP addresses.
> >
> > Normally I'd throw OpenVPN on a couple of Linux boxes and be happy
> > but my customer insists on a network appliance. Site to site VPNs
> > using IPSec and static IP addresses on the plaintext side are a dime
> > a dozen but traversing NAT and dynamic IP addresses (and
> > automatically re-establishing when the service goes out and comes
> > back up with different addresses) is a hard requirement.
> >
> > Thanks in advance,
> >
> > Bill Herrin
> >
> > --
> >
> > William Herrin
> >
> > bill () herrin us
> >
> > https://bill.herrin.us/