Comment on VPN server on router or within home network?
rtxn@lemmy.world 5 days ago
Tailscale. It does some UDP fuckery to bypass NAT so you don’t even need to open any ports. You can run it on individual hosts to access them directly, and/or you can set it up on one device to advertise an entire subnet and have the client work like a split tunnel VPN.
fragrantvegetable@sopuli.xyz 4 days ago
I wouldn’t be surprised if they use hole punching. It’s an old but effective technique which Skype famously used back in its heyday.
girsaysdoom@sh.itjust.works 4 days ago
It does a few techniques depending on the type of network and security obstacles. They posted an article on it that’s interesting.
I’d also check out pangolin or headscale like others recommeded though since you’re already looking to self-host.
rtxn@lemmy.world 4 days ago
It’s based on hole punching, but with extras. The clients punch a hole in their respective firewalls then the service connect the holes so the clients end up communicating directly with each other. They have a lengthy blog post about NAT traversal.