Support Me
Get a discount on Ekster Products
https://shop.ekster.com/devodyssey or discount code "DEV" at checkout!
(PAID Link)
Follow me on Twitter and Facebook
https://twitter.com/Dev_Odyssey
https://www.facebook.com/Dev0dyssey
We're all aware of how VPNs are used for privacy, geographic specific content, and hiding your IP. But VPNs have many other use cases, and a big one is site to site VPNs. What this does, is connect your networks together as if they all come from the same firewall. Corporations have been using site to site VPNs for quite some time, to connect their remote office networks together. However, this tech isn't just for big business; you too can set up a site to site VPN in your personal networks. You can set them up to connect family networks, friend's networks, or personal business networks together. This makes management of these networks convenient, and secure using strong encryption behind VPNs. In particular, Wireguard is well suited for site to site VPNs, with strong encryption, and low latency.
Setting up your own site to site VPN with Wireguard is easy. While I demonstrate this with OpenWrt, you can do this easily with most Linux distros, such as Raspberry Pi OS, or BSD based distributions like OPNsense, pfSense, or even FreeBSD. The configuration used here, and theory, will carry over to any distribution you choose, and has been curated with best security practices in mind. From here, you can create additional security policies that let you shape and control your traffic and access the way you want it. In the future, this will be helpful in learning mesh and overlay networking.
Watch this video to start joining your networks for convenience and management ease!
Links
Automated WireGuard Site to Site VPN configuration
https://openwrt.org/docs/guide-user/services/vpn/wireguard/site-to-site
Forward Zones and Forward Rules Reference
https://forum.openwrt.org/t/firewall-zones-forwards-and-rules/25197
Wireguard Reference
https://www.wireguard.com
Site A Configuration
https://gist.github.com/odevodyssey/7835d43af8aa21a667eabee858caba1a
Site B Configuration
https://gist.github.com/odevodyssey/16391b417d12df0357e3adee867c069c
OpenWrt (21.02) Packages Used
luci-wireguard-app + dependencies (in the link below)
https://openwrt.org/packages/pkgdata/luci-app-wireguard
00:00 Intro
01:11 Site to Site VPN Diagram
04:56 Site to Site VPN Uses
05:54 Hardware / Software
06:13 Demo Foreward
07:51 Demonstration / Site A Config
11:17 Site B Config
17:29 Finish Site A Config
20:00 Verifying / Testing
22:40 Site to Site VPN Benefits
23:11 Final Thoughts / Alternatives
24:05 Outro
Music | "Get Away" by LiQWYD
Watch: https://youtu.be/UHyuQBoiVq0
License: https://www.liqwydmusic.com/how-to-use
Download/Stream: https://hypeddit.com/liqwyd/get-away
OpenWrt is a registered trademark owned by Software Freedom Conservancy (SFC)
WireGuard is a registered trademark of Jason A. Donenfeld
#OpenWrt #Wireguard #Site2Site #VPN #site-to-site