It’s based on hole punching, but with extras. The clients punch a hole in their respective firewalls then the service connect the holes so the clients end up communicating directly with each other. They have a lengthy blog post about NAT traversal.
Comment on VPN server on router or within home network?
fragrantvegetable@sopuli.xyz 4 days agoIt does some UDP fuckery to bypass NAT and firewalls
I wouldn’t be surprised if they use hole punching. It’s an old but effective technique which Skype famously used back in its heyday.
rtxn@lemmy.world 4 days ago
girsaysdoom@sh.itjust.works 4 days ago
It does a few techniques depending on the type of network and security obstacles. They posted an article on it that’s interesting.
I’d also check out pangolin or headscale like others recommeded though since you’re already looking to self-host.