public inbox for nncp-devel@lists.cypherpunks.ru
Atom feed
From: Jonathan Lane <tidux@sdf•org>
To: nncp-devel@lists.cypherpunks.ru
Subject: Re: NNCP road warrior
Date: Sat, 8 Jan 2022 00:57:44 +0000 [thread overview]
Message-ID: <YdjhiG9kfAHjIbq1@beastie> (raw)
In-Reply-To: <87mtk8zisw.fsf@complete.org>
On Thu, Jan 06, 2022 at 02:54:39PM -0600, John Goerzen wrote:
> So I have been reflecting on the recent conversations about two
> different routes and such, and thought "can we solve this problem at a
> different layer?"
>
> I've been looking into two options that would be very interesting here.
>
> One is Yggdrasil network, https://yggdrasil-network.github.io/ . This
> is an overlay network atop the public Internet, that is fully end-to-end
> encrypted all the time. More particularly, the entire global network is
> an auto-healing mesh, so if you take your laptop from home to work, it
> will find a new path online (or re-establish a link with the same peer)
> and your IP address remains the same. IP addresses are v6 only and are
> derived from the node's public key, so each person gets basically a
> globally-routable static IP, plus also a /64 subnet if you like. You
> can also run Yggdrasil in an entirely closed network by simply never
> connecting any of the nodes to a public peer on the main network (though
> the moment one node is connected to the main network, they all are
> reachable there via mesh routing)
>
> Tinc vpn https://tinc-vpn.org/ is another option. While it came along
> long before Yggdrasil, I think of it as sort of a private-only
> alternative. Like Yggdrasil, it has mesh routing so you can reach any
> of your nodes via any others so long as there is a path somewhere,
> somehow. Unlike Yggdrasil, it's aimed more at traditional VPN uses and
> lets you specify your own IP ranges, routing between networks, etc.
>
> A sort of third option is Tor. I've tried this for awhile, and operate
> a couple of nncp-daemons as a Tor onion service. This achieves the
> portability I'm looking for, but is slow. EXTREMELY slow. So slow, in
> fact, that NNCP seems to have a 10-second timeout on connect that often
> gets triggered.
I think this gets back into the NNCP+Syncthing hybrid. In my recent
experience, the only places I don't have 5G/LTE on par with my home
LAN's uplink are -really- far off the beaten path, like a ship off shore
or on airplane wifi, and those situations tend to align more with just
working offline anyways. Multi-routing only makes sense for metered
connections where you want SOME connectivity, which I no longer have.
For those cases where you need an overlay to contact your home or a
well-located server, I enjoy Wireguard. It's got native support in
GNU/Linux and OpenBSD, and a nice set of mobile apps. Wireguard is also
much faster than Tor or even OpenVPN. Yggdrasil is something I haven't
tried, but based on my experience with CJDNS it probably works fine.
next prev parent reply other threads:[~2022-01-08 1:17 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2022-01-06 20:54 NNCP road warrior John Goerzen
2022-01-08 0:57 ` Jonathan Lane [this message]
2022-01-08 11:26 ` Sergey Matveev
2022-01-08 21:00 ` Jonathan Lane
2022-01-12 21:40 ` John Goerzen
2022-01-08 7:17 ` Koushik Roy
2022-01-12 22:07 ` John Goerzen
2022-01-08 11:12 ` Sergey Matveev
2022-01-12 22:13 ` John Goerzen
2022-01-14 8:03 ` Sergey Matveev