Nebula 1.5, ọrụ na-enye ngwaọrụ maka iwulite netwọk mkpuchi nchekwa, dị ugbu a. Netwọk ahụ nwere ike ijikọ ebe ọ bụla site na ole na ole ruo ọtụtụ puku ndị ọbịa kesara n'ókèala nke ndị na-enye ọrụ dị iche iche na-akwado, na-emepụta netwọk dị iche, nke dịpụrụ adịpụ n'elu netwọk ụwa. A na-ede ọrụ a na Go ma kesaa ya n'okpuru ikike MIT. Slack, ụlọ ọrụ dị n'azụ ngwa ozi ụlọ ọrụ nke otu aha ahụ, hiwere ya. Ọ na-akwado ya. Linux, FreeBSD, macOS, Windows, iOS na Android.
Ọnụọgụ dị na netwọk Nebula na-akpakọrịta ozugbo na ọnọdụ P2P - ebe ọ dị mkpa ịnyefe data n'etiti ọnụ, a na-emepụta njikọ kpọmkwem n'ụzọ dị mfe Okwey-njikọ. A na-eji asambodo dijitalụ akwado njirimara nke onye ọbịa ọ bụla na netwọk ahụ, njikọ ya na netwọk ahụ chọrọ nkwenye - onye ọrụ ọ bụla na-enweta asambodo na-akwado adreesị IP ha na netwọk Nebula, aha ha, na ndị otu onye ọbịa ha. A na-eji ikike asambodo dị n'ime edebanye aha asambodo, nke onye na-enye netwọk na-etinye n'ebe obibi ma jiri ya nyochaa ikike nke ndị ọbịa enyere ikike ijikọ na netwọk overlay.
Iji mepụta ọwa nkwukọrịta echekwara nke ọma, Nebula na-eji usoro ọwara nkeonwe dabere na usoro mgbanwe igodo Diffie-Hellman na nzuzo AES-256-GCM. Mmezu usoro a dabere na ihe mbụ emere na nke a nwalere nke usoro Noise nyere, nke a na-ejikwa na ọrụ dịka WireGuard, Lightning, na I2P. A na-ekwu na ọrụ a agafeela nyocha nchekwa nke onwe ya.
Iji chọpụta nodes ndị ọzọ ma hazie njikọ na netwọk ahụ, a na-emepụta nodes "lighthouse" pụrụ iche, nke adreesị IP zuru ụwa ọnụ ya bụ nke ndị sonyere na netwọk maara. Nodes ndị sonyere enweghị njikọ na mpụga adreesị IP, a na-amata ha site na asambodo. Ndị nwe nnabata enweghị ike ịgbanwe asambodo mbinye aka n'onwe ha, n'adịghịkwa ka netwọk IP ọdịnala, enweghị ike ime ka onye nnabata ọzọ bụrụ naanị site na ịgbanwe adreesị IP. Mgbe ị na-emepe ọwara, a na-akwado njirimara onye nnabata site na igodo nzuzo nkeonwe ya.
Netwọk emepụtara ka ekenyela ụfọdụ adreesị intranet (dịka ọmụmaatụ, 192.168.10.0/24) yana adreesị ime jikọtara ya na asambodo nnabata. Enwere ike ịmepụta otu site na ndị sonyere na netwọk mkpuchi, dịka ọmụmaatụ, iji kewaa sava na ebe a na-arụ ọrụ, nke etinyere iwu nzacha okporo ụzọ dị iche iche. A na-enye usoro dị iche iche iji gafere ndị ntụgharị okwu (NAT) na firewalls. Ọ ga-ekwe omume ịhazi okporo ụzọ site na netwọk machie nke okporo ụzọ sitere na ndị ọbịa nke atọ na-abụghị akụkụ nke netwọk Nebula (ụzọ adịghị mma).
Ọ na-akwado mmepụta nke firewalls ikewa ohere na nzacha okporo ụzọ n'etiti ọnụ na Nebula overlay netwọk. A na-eji ACL nwere njide mkpado maka nzacha. Onye ọ bụla ọbịa na netwọk nwere ike kọwaa iwu nzacha nke ya dabere na ndị ọbịa, otu, protocol, na ọdụ ụgbọ mmiri netwọk. N'okwu a, a na-enyocha ndị ọbịa ọ bụghị site na adreesị IP, kama site na njirimara ndị ọbịa bịanyere aka na dijitalụ, nke enweghị ike ịmebe na-emebighị ụlọ ọrụ asambodo na-ahazi netwọkụ ahụ.
Na mwepụta ọhụrụ:
- Etinyere ọkọlọtọ "-raw" na iwu mbipụta-cert ka ibipụta ihe nnọchianya PEM nke asambodo ahụ.
- Agbakwunyere nkwado maka nhazi ụlọ ọhụrụ Linux riscv64.
- Agbakwunyere ntọala remote_allow_ranges nnwale iji kekọta ndepụta nke ndị ọbịa ekwenyere na subnets akọwapụtara.
- agbakwunyere pki.disconnect_invalid nhọrọ iji tọgharịa ọwara mgbe ntụkwasị obi nchupu ma ọ bụ akwụkwọ ndụ agwụ.
- atụkwasịkwara unsafe_routes nhọrọ. .metric iji kenye ibu n'otu ụzọ mpụga akọwapụtara.
isi: opennet.ru
