Pulojekiti ya Firezone ikupanga seva ya VPN kuti ikonzekere mwayi wopeza makamu mumanetiweki akutali kuchokera ku zida za ogwiritsa zomwe zili pamanetiweki akunja. Ntchitoyi ikufuna kukwaniritsa chitetezo chokwanira komanso kufewetsa njira yotumizira VPN. Khodi ya polojekitiyi idalembedwa ku Elixir ndi Ruby, ndipo imagawidwa pansi pa chilolezo cha Apache 2.0.
Pulojekitiyi ikupangidwa ndi injiniya wodzitetezera wachitetezo wochokera ku Cisco, yemwe adayesa kupanga yankho lomwe limagwira ntchito ndi makonzedwe a alendo ndikuchotsa mavuto omwe amayenera kukumana nawo pokonzekera mwayi wopeza ma VPC amtambo. Firezone ikhoza kuganiziridwa ngati gwero lotseguka la OpenVPN Access Server, lomangidwa pamwamba pa WireGuard m'malo mwa OpenVPN.
Pakuyika, ma phukusi a rpm ndi deb amaperekedwa kumitundu yosiyanasiyana ya CentOS, Fedora, Ubuntu ndi Debian, kuyika kwake komwe sikufuna kudalira kunja, popeza zodalira zonse zofunikira zikuphatikizidwa kale pogwiritsa ntchito zida za Chef Omnibus. Kuti mugwire ntchito, mumangofunika zida zogawa ndi Linux kernel zosaposa 4.19 ndi gawo la kernel lomwe lili ndi VPN WireGuard. Malinga ndi wolemba, kuyambitsa ndi kukhazikitsa seva ya VPN kutha kuchitika mphindi zochepa chabe. Zida zapaintaneti zimayendetsedwa ndi ogwiritsa ntchito opanda mwayi, ndipo mwayi wopezeka ndi HTTPS.
Kukonzekera njira zoyankhulirana ku Firezone, WireGuard imagwiritsidwa ntchito. Firezone ilinso ndi magwiridwe antchito opangira ma firewall pogwiritsa ntchito nftables. M'mawonekedwe ake apano, firewall imangokhala yotsekereza magalimoto otuluka kupita ku makamu kapena ma subnets amkati kapena akunja. Kuwongolera kumachitika kudzera pa intaneti kapena pamzere wamalamulo pogwiritsa ntchito firezone-ctl utility. Mawonekedwe a intaneti akhazikika pa Admin One Bulma.
Pakalipano, zigawo zonse za Firezone zimayenda pa seva imodzi, koma polojekitiyi ikukonzedwa poyamba ndi diso ku modularity ndipo m'tsogolomu ikukonzekera kuwonjezera mphamvu yogawa zigawo za mawonekedwe a intaneti, VPN ndi firewall kudutsa makamu osiyanasiyana. Mapulani amaphatikizanso kuphatikiza kwa DNS-level ad blocker, kuthandizira pamndandanda wa block ndi subnet block, kuthekera kotsimikizika kwa LDAP/SSO, ndi kuthekera kowonjezera kwa ogwiritsa ntchito.
Source: opennet.ru