3/26/2023 0 Comments Pritunl routing issues![]() No matter how many Pritunl instances are active – and no matter what hardware they run on – every cluster always knows which partners it has. Thanks to the use of MongoDB and its clustering functionality, the datasets in the cluster are identical for every server. The infrastructure for this is already in place. The Pritunl developers are currently thinking about the topic of high availability. If you need more than one VPN entry point, simply use more than one server. Pritunl prevents this problem by allowing administrators to run various VPN servers in different Pritunl instances on multiple servers. ![]() VPN servers tend to be bottlenecks: If hundreds of users connect to the service at the same time, it can quickly break a sweat. After this, the existing Pritunl instances talk directly to the EdgeMAX routers and configure them according to the administrator's specifications. Pritunl comes with an EdgeMAX plugin that installs directly on the devices. Under the EdgeMAX brand name, Ubiquiti distributes various routers and switches in the semiprofessional sector. On its website, Pritunl avidly promotes its integrated support for products by Ubiquiti. The local Pritunl instances each connect to their own MongoDB database. The individual MongoDB instances thus need to replicate their data autonomously in the background. This type of setup requires a MongoDB cluster, however. Using the VPN link, all the servers and clients involved can communicate freely. This option is very practical for enterprises that have their data distributed across multiple locations. On the other hand, clients that connect to servers see all other clients in both parts of the network. On the one hand, the computers behind the servers then see each other directly, thanks to Pritunl this more or less creates a large virtual network segment. Neither setup variant offers any notable benefits compared with OpenVPN, but this is not true of the option to connect multiple Pritunl servers. For the technically more elegant bridge mode, you would need an enterprise license. ![]() This optionally relies on tunneling or bridging, the difference simply being whether the VPN client directly becomes part of the private network or Pritunl visibly acts as a broker between the two networks. Typical VPN setups are no problem for Pritunl, though: A user who is connected to Pritunl can use this connection to access all the computers on the private network behind the server. That said, a gateway setup of this kind is not very exciting. The connection then becomes the default route: All traffic from the Internet and to the Internet is routed via an appropriately encrypted connection in Pritunl – and the solution can handle both IPv4 and IPv6. For example, you can use the VPN server as a simple gateway if typical network address translation is not an option for some reason. Of course, Pritunl can handle the basic operation modes. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |