Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
I
I
Igor2012-06-26 10:36:45
VPN
Igor, 2012-06-26 10:36:45

How to create a dynamic VPN tunnel?

There are several servers. Let, for example, there will be 3 of them. And an indefinite number of users. Each user needs to create a VPN tunnel through these servers to the Internet. But different users should have their own order of connection to the servers.

I.e.:
user #1 connects via servers: 1-2-3-Internet
user #2 connects via servers: 3-2-1-Internet
user #3 connects via servers: 2-3-1-Internet
, etc. d.

Users should not see each other. And from time to time, users need to change the connection scheme automatically and transparently for them (you can do this on the default gateway, which will wrap all user connections in the VPN).

How can this be organized?

So far I see 2 options:
1. SSH tunnel: for each user on his own port, open dynamic SSH port forwarding, connecting from one server sequentially to another.
2. Use OpenVPN.

The first option is not liked by the fact that it is not clear how to automate this process. In particular, entering a password when logging in via SSH.

The second option is preferable, but it is completely unclear how to make the VPN dynamic. Although this is possible, because There are plenty of such services on the internet. Example

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

4 answer(s)
Report
A
AlekseyPolyakov, 2012-06-26
@AlekseyPolyakov

OpenVPN will not suit you, as the client side selects a host from the list randomly. Otherwise, I lost the logical chain.

Report
J
johnpion, 2012-06-27
@johnpion

It is possible if instead of ip servers you have aliases on DNS records and they change according to a schedule

Report
I
Igor, 2012-06-27
@shanker

what if you do this with OpenVPN:
tun0 to server #1
tun1 to server #2 goes through tun0
tun2 to server #3 goes through tun1
and dynamically change server IPs in configs for all tunnels?

Report
S
ser9ey, 2012-07-04
@ser9ey

It looks like this
1) DNS A record with several IPs:
www.tunnel.com. 298 IN A 111.22.333.111
www.tunnel.com. 298 IN A 111.22.333.222
www.tunnel.com. 298 IN A 111.22.333.333
2) Balancing on each node of incoming traffic to 2 other nodes depending on the source address (standard routing capabilities should be enough, or IPtables will help you, or source / destination based routing tables)

Similar questions
A
Akigami2019-03-27 11:37:07
VPN, SSH can you explain the difference in a nutshell? 4Reply
A
Alexey Yarkov2019-03-28 14:16:24
How to trace a broken connection using bash? 1Reply
D
dsadw2w32020-12-14 17:24:37
How to open ports? 2Reply
N
nuzik2016-11-03 13:31:26
Anonymity on the web. What is the bare minimum to not draw attention to yourself? 4Reply
F
fdroid2019-04-02 19:21:33
How to access host behind VPN client? 4Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question