R
RunPod•3w ago
pixel1

Site-to-Site VPN

Is it possible to setup a Site-to-Site vpn with a POD to secure the traffic between our Pod and our internal organizational network? Unfortunately I could not find any information about this. I am aware of your global networking features and end-to-end encryption, but this would involve a direct link between our infrastructure and the RunPod environment.
27 Replies
Madiator2011 (Work)
Madiator2011 (Work)•3w ago
not possible, for secure connection recomend ssh tunnels
Sasan
Sasan•3w ago
You can use tunneling. One of my recommended cores is Xray or Singbox. And you can use TLS or reality security as well for them. VXLAN can be the best as well, much more faster than ssh tunnel..
riverfog7
riverfog7•3w ago
how about wireguard VPN not possible?
Sasan
Sasan•3w ago
Its good not bad Also you can use 6to4 Or gre6 + ipsec Check this repo: https://github.com/Azumi67/6TO4-GRE-IPIP-SIT You can find lots of scenarios and options.
GitHub
GitHub - Azumi67/6TO4-GRE-IPIP-SIT: [Multiple Servers] Tunneling me...
[Multiple Servers] Tunneling methods such as 6to4, GRE6, and IP6IP6, Geneve provide solutions for transmitting IPv6 packets over existing IPv4 or IPv6 networks. These methods allow communication be...
riverfog7
riverfog7•3w ago
its unreadable bruh
Sasan
Sasan•3w ago
You mean readme?!
riverfog7
riverfog7•3w ago
yeah
Sasan
Sasan•3w ago
Scrip is bassed on english Also you can translate the readme
riverfog7
riverfog7•3w ago
fair point it may work but i think a 46747 line long python file is a red flag
Sasan
Sasan•3w ago
Bro, you can do all of these with just a few steps. Just ask ChatGPT to guide you, like: "How can I do 6to4 site-to-site tunneling via Netplan (for example, this one persists after rebooting and doesn't affect your entire system network)" But mostly, you must see what you want to do and choose the best option for your needs.
riverfog7
riverfog7•3w ago
I know how to do it without chatGPT what i meant was why tf did the author didnt seperate the files and make the thing unreadable even github refuses to highlight the code
Sasan
Sasan•3w ago
Idk 😄
riverfog7
riverfog7•3w ago
anyways if it works not bad wireguard does not work
Sasan
Sasan•3w ago
Change your mtu Probably wireguard is fast but not as stable option
riverfog7
riverfog7•3w ago
Lol Wireguard is the most stable Solution suggested here And its not a mtu problem
Sasan
Sasan•3w ago
Nope 🙂
riverfog7
riverfog7•3w ago
> ?
Sasan
Sasan•3w ago
WireGuard can easily face connection losses and other problems Idk what you're doing but wg is not always the best
riverfog7
riverfog7•3w ago
i mean those options are not a "VPN" and wireguard is used on production
Sasan
Sasan•3w ago
Then use xray or singbox
riverfog7
riverfog7•3w ago
i agree about connection drop tho
Sasan
Sasan•3w ago
Or
riverfog7
riverfog7•3w ago
so annoying
Sasan
Sasan•3w ago
Use hysteria2 it is bassed on quic as fast as wg
riverfog7
riverfog7•3w ago
those are all proxies from what i searched not VPNs
Sasan
Sasan•3w ago
Use openvpn Bro use nothing:D
riverfog7
riverfog7•3w ago
OP wanted site to site VPNs lol what you suggested cannot do that VPN in this context is not used as "a way to bypass restrictions" its "a virtual LAN"

Did you find this page helpful?