Good afternoon Community!
My name is Mikhail Podivilov. I am the founder of the public organization "Medium".
I have been repeatedly asked to write a short but comprehensive guide on how to connect to the network in overlay mode, that is, without connecting directly to the router of the Medium operator, but by using the Internet and as a transport.
In this publication, I will try to explain in an accessible way how you can connect to the Medium network in overlay mode and configure the working environment if you are using the Windows operating system.
If you want to know in detail what is and what is not a decentralized Internet provider "Medium", I recommend reading .
Lyrical digression
Before moving on to the main branch of the story, I would like to say a few words about why connecting in overlay mode to the Medium network now plays such an important role.
First, let us use the topology в и , not everyone wants to make a pilgrimage to these cities to try the network in action.
In these cities works at the level , where already on top of them at the level works , which we use as the main network transport.
Thus, the topology of the "Medium" network has the following form
Secondly, due to the fact that most users do not have the ability to directly connect to the routers of the Medium network operators, there is a natural need to access network resources by using the transport of the Internet that is already familiar to us all.
Thanks to the use of connection in the overlay mode, the Medium network has acquired a large number of information resources that are now administered by the operators and members of the Medium network.
See for yourself!
It seems to me that the title contradicts the content. Is that how it should be?
The title does not contradict the content, but is a subjective projection of the author's expectations that in the near future the community of the decentralized Internet provider "Medium" will be able to organize access to the network in many other Russian cities. This will allow users to use the resources of the "Medium" network without using the transport of the Internet.
We believe that every person should have the right to provide and use communication services free of charge, because we do not pay to communicate directly with each other in reality. Don't forget that the network is primarily people, not technology - we pay for the use of Internet transport only because he does not belong to us.
Despite the fact that the Internet was initially decentralized (its name speaks for it - “Interconnected Networks”, “Network of Networks”), communication channels still belong to either the state or corporations. Therefore, its main drawback is that it is controlled not by the community, but by the state and corporations.
By the way, in addition to Kolomna and Khanty-Mansiysk, Medium has access points in , и . Foreign enthusiasts also support the initiative of the Medium network and raise hotspots in Riga and Barcelona.
So let's get started!
Step 1. Loading of the software necessary for correct work in a network.
Depending on the bitness of your operating system, download the latest release of the Yggdrasil client . At the time of writing, the current version is 0.3.8.
The bit depth of your operating system can be found by calling the context menu of the “Computer” section inside the “Explorer” program and selecting the “Properties” item.
You are interested in the item "Type of system". The bit depth of your operating system will be displayed there. For example, "64-bit operating system».
The client can be downloaded here:
|
And, accordingly, the utility for administering your copy of Yggdrasil can be downloaded here:
|
Step 2. Installing the software required for correct network operation.
Now you need to move the previously downloaded files to the directory located at C: WindowsSystem32. Typically a Windows environment variable % PATH% contains the addresses of the directories in which the executable files are located. They include and C: WindowsSystem32.
Step 3. Setting up the Yggdrasil client.
By pressing a key combination Win + R and enter in the command field that appears cmd, run a command prompt.
Use the command yggdrasil -genconf > yggdrasil.confto create a new configuration file. Please do not share this file with anyone., because it contains your private key for encrypting traffic within the network.
Your private key is generated from your intranet IPv6 address, so if an attacker can get a copy of your configuration file, he will also be able to use your IPv6 address and impersonate you.
Your config file is now located at C:UsersВАШЕ_ИМЯ_ПОЛЬЗОВАТЕЛЯyggdrasil.conf. Open this file with any text editor and pay special attention to the following pairs key-value:
Peers: [] - if you leave this field empty, the Yggdrasil client will only be able to work in the -autoconf. Other peers (members) of the network that also work in overlay mode should be specified here. They will be connected to when starting the Yggdrasil client.
Select multiple peers from and add them to the list of peers.
You should get something like Peers: ["tcp://46.151.26.194:60575", "tcp://78.155.207.12:32320", "tcp://194.177.21.156:5066"]. You can also use peers from other countries, but this is extremely not recommended, as it adversely affects the overall performance of the network.
Change the parameter NodeInfoPrivacy: false on NodeInfoPrivacy: trueif you don't want other network members to know what platform, architecture and version of the Yggdrasil client you are using. I recommend hiding these options as Yggdrasil is currently not very stable and some versions .
You can also adjust the setting NodeInfoso that other network users can find out more information about your node. You choose what information you share and what you don't.
For example:
NodeInfo:
{
contact: [email protected]
location: Ozyory, Russia
name: home.y.podivilov.ru
}
Step 4. Create a task in Task Scheduler.
By pressing a key combination Win + R and enter in the command field that appears taskschd.msc, start Task Scheduler.
From the context menu on the right, select Create task.
On the "General" tab, in the "Name" field, enter "Yggdrasil" and check the box next to "Run with highest privileges". This is necessary in order for the Yggdrasil client to be able to use the network TAP driver, which we will install in the next step.
On the "Triggers" tab, click on the "Create" button and from the context menu select "At logon". Click OK.
On the "Actions" tab, click on the "Create" button and opposite the "Action" inscription, select the "Start the program" item from the context menu. In the Program or Script field, enter Yggdrasil. In the Add Arguments (Optional) field, enter -useconffile C:UsersИМЯ_ВАШЕГО_ПОЛЬЗОВАТЕЛЯyggdrasil.conf. Click OK.
Step 5. Installing the OpenVPN distribution.
Yggdrasil uses a virtual network TAP driver to emulate an Ethernet device and make the network work correctly.
You can download the OpenVPN distribution .
Step 6. Configuring DNS servers for the IPv6 protocol.
- Call the Windows context menu by pressing the key
Winand open the control panel - Select "Network and Internet"
- Select "Network and Sharing Center"
- Click on the link next to "Connections"
- Click "Properties"
- Select "IP version 6 (TCP/IPv6)"
- Click "Properties"
- Check the box next to "Use the following DNS server addresses"
- Enter the
200:d0c4:68ee:e87b:c206:67b8:5fa5:d4bein the "Preferred DNS Server" field and click "OK"
Congratulations! Setup completed. Return to the task scheduler, then select the Yggdrasil item and click on the "Run" button from the context menu on the right.
You will see a terminal window appear:
Everything is working.
Now you can open your browser and type in the address bar . If the network is configured correctly, you will see the following page:
Welcome!
We have prepared for you a list of the most interesting and popular network resources - you can find it .
Free Internet in Russia starts with you
You can render all possible assistance in establishing a free Internet in Russia today. We have compiled a comprehensive list of how you can help the network:
Tell your friends and colleagues about the Medium network
Share it to this article in social networks or personal blog
Take part in the discussion of technical issues of the Medium network
Create your web service online
Raise your to the Medium network
See also:
We are on Telegram:
Only registered users can participate in the survey. , you are welcome.
Alternative voting: it is important for us to know the opinion of those who do not have a full account on Habré
-
↑
-
↓
86 users voted. 22 users abstained.
Source: habr.com