A rather long title but the post is about self-hosted open-source mesh VPN with IPv6 support and works with nodes behind CGNAT! This will be a long post documenting the concept of mesh VPN, the problem it is solving as well as a working demo. If you are not planning to deploy it right away, you can skip the post after the “Configs and setup” section.
Problem I am running a site-to-site VPN for a long time between various servers located far away from each other.
Last few weeks went extremely busy. Feb + the first few days of Mar were spent in the Philippines for APRICOT 2023. This was the first time I spent close to 15 days at an APRICOT event due to involvement in workshops. Anyways, I enjoyed it. So far I have done this workshop on network automation twice (at SANOG 38 and APRICOT 2023) and both times I get attendees with a different sets of skillset.
Last month I got access to Jio 5G like everyone else around in Haryana. They are running a beta program with uncapped data for now. Overall it works fine for usual stuff (web surfing on popular sites, YouTube videos, music streaming etc) but 464XLAT seems to be a little buggy in IPv4 hardcoded destinations. Initially it was giving quite a few issues but many of them seem to be fixed in last few days.
Last year had many interesting developments and one of that has been object storage. For those unaware, object storage is de-facto cloud storage which stores data as objects instead of file system architecture. This gives the option of simple plug-and-play horizontal scalability. It became popular when Amazon Web Services (AWS) launched S3. The idea was straightforward - pay-as-go storage with a few cents/GB/month charge to store data and a few cents/GB to egress data.
Next month will be APRICOT 2023 which is exciting. The last in-person event of such kind was in Feb 2020 in Melbourne. Later APRICOT 2021 & 2022 were completely online (similar to other NOGs). This year’s APRICOT will be in Manila, Philippines. On the agenda will be meetings with network operators, CDNs and internet exchanges in the region. Along with that, I will be doing a 5-day long workshop on “Network Automation for Network Engineers”.