Subj : fsxNet Feedback (ZeroTier
To   : N1uro
From : Oli
Date : Sun May 16 2021 03:39 pm

N1uro wrote (2021-05-14):

 Ol>> I agree. It also would not qualify as Open Source software /
 Ol>> license.

 N> Just to try and help offer another possible solution to this issue as a
 N> network engineer:

 N> Why not investigate OpenVPN?

p2p connections work by default in ZeroTier. Does OpenVPN do any NAT hole punching? A known and simpler alternative would be tinc. OpenVPN has also become kind of old-tech. Is there anything wireguard wouldn't do simpler and better (for our use case)?

 N> A dedicated hub feed to a european hub
 N> can set up DNS locally to feed a hub in europe over OpenVPN using either
 N> TCP or UDP and choose ports, and maintain custom certs that may have a
 N> long expiration date on them... and then it'd be up to that european hub
 N> to feed the rest of europe - insuring that their laws are followed.

Personally I'm not interested in a top-down approach with admin(s) maintaining certs and granting and revoking access. I would call it unnecessary centralization (bullshit power & small bus factor). FTN are on the lower layer decentralized and designed as "cooperative anarchy".

It's not that I don't appreciate your initiative to setup OpenVPN for the network, I just doubt that standard VPNs are a good fit for FTN.

(not sure what the European hub and laws part is about)

---
 * Origin: . (21:3/102)

.