![]() ![]() So my ideas summarized are Tinc+ULA+RAs, or building some automation of WG, or perhaps explore where I stopped short for now, i.e. So instead I built a set of custom shell scripts to set up WireGuard, and automatically login into each server via ssh to mass-update everything when needed. ![]() The problem is that WireGuard is 元, not L2, so you can't run RA over it. IPv6 route advertisements let you run a toy routing protocol like that, something an order of magnitude simpler than BGP or OSPF.īut now there's a much faster and simpler WireGuard VPN, so I switched to that, and largely removed my Tinc network by now. Some time ago I would use a Tinc VPN in L2 mode with a range of ULA (private) IPv6 addresses on each server for VMs, and radvd, so that each server would announce its designated ULA subnet into the Tinc network with route advertisements, and other servers would automatically know how to reach it, without any reconfiguration for each, or even logging in to them at all.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |