Iyo Headscale purojekiti iri kugadzira yakavhurika kuisirwa kwesevha chikamu cheTailscale VPN network, iyo inobvumidza iwe kugadzira VPN network yakafanana neTailscale pazvivakwa zvako, pasina kusungirirwa kune wechitatu-bato masevhisi. Headscale's kodhi yakanyorwa muGo uye yakagoverwa pasi perezinesi reBSD. Chirongwa ichi chiri kuvandudzwa naJuan Font weEuropean Space Agency.
Tailcale inokutendera kuti ubatanidze huwandu hwekupokana hwevakapararira munzvimbo mune imwe network, yakavakwa senge mesh network, umo imwe neimwe node inodyidzana nedzimwe node zvakananga (P2P) kana kuburikidza neakavakidzana node, pasina kuendesa traffic kuburikidza nepakati maseva ekunze eVPN. provider. ACL-yakavakirwa kuwana uye nzira yekudzora inotsigirwa. Kugadzira nzira dzekutaurirana paunenge uchishandisa vashanduri vekero (NAT), rutsigiro rwunopihwa STUN, ICE uye DERP masisitimu (analogous to TURN, asi zvichibva paHTTPS). Kana nzira yekutaurirana pakati pedzimwe node yakavharwa, network inogona kuvakazve nzira yekutungamira traffic kuburikidza nedzimwe node.
Tailcale inosiyana neNebula purojekiti, zvakare yakagadzirirwa kugadzira yakagoverwa VPN network ine mesh routing, nekushandisa iyo Wireguard protocol kuronga kuendesa data pakati pemanodhi, nepo Nebula ichishandisa budiriro yeTinc purojekiti, inoshandisa iyo AES-256 algorithm kuvharidzira mapaketi. -GSM (Wireguard inoshandisa ChaCha20 cipher, iyo mukuedzwa inoratidza kukwirira kwepamusoro uye kupindura).
Imwe purojekiti yakafanana iri kugadzirwa zvakasiyana - Innernet, umo iyo Wireguard protocol inoshandiswawo kuchinjanisa data pakati penode. Kusiyana neTailscale neNebula, Innernet inoshandisa nzira yakasiyana yekupatsanurwa kwekuwana, yakavakirwa kwete paACLs ine ma tags akasungirirwa kune imwe nodes, asi pakupatsanurwa kwe subnets uye kugoverwa kwezvikamu zvakasiyana-siyana zvekero dze IP, sepaIndaneti nguva dzose. Mukuwedzera, panzvimbo pemutauro weGo, Innernet inoshandisa mutauro weRust. Mazuva matatu apfuura, iyo Innernet 1.5 yekuvandudza yakaburitswa nekuvandudzwa kweNAT yekutenderera rutsigiro. Kune zvakare chirongwa cheNetmaker chinokutendera kuti ubatanidze ma network ane akasiyana topology uchishandisa Wireguard, asi kodhi yayo inopihwa pasi peSSPL (Server Side Public License), iyo isina kuvhurwa nekuda kwekuvapo kwekusarura zvinodiwa.
Tailscale inogovaniswa uchishandisa freemium modhi, zvichireva kushandiswa kwemahara kune vanhu uye kubhadharwa kwekuwana kumabhizinesi nezvikwata. Tailcale mutengi zvikamu, kunze kweiyo graphical application yeWindows uye macOS, inogadzirwa semapurojekiti akavhurika pasi perezinesi reBSD. Iyo sevha software inomhanya kudivi reTailscale ndeyemuridzi, inopa humbowo kana uchibatanidza vatengi vatsva, kuronga kiyi manejimendi, uye kuronga kutaurirana pakati pemanodhi. Iyo Headscale purojekiti inogadzirisa kukanganisa uku uye inopa yakazvimiririra, yakavhurika kuita kweTailscale backend zvikamu.
Headscale inotora mabasa ekutsinhanisa makiyi eruzhinji, uye inoitawo mashandiro ekugovera IP kero uye kugovera matafura enzira pakati pemanodhi. Mune chimiro chayo chazvino, Headscale inoshandisa ese ekutanga kugona kweiyo manejimendi server, kunze kwekutsigirwa kweMagicDNS uye Smart DNS. Kunyanya, mabasa ekunyoresa node (kusanganisira kuburikidza newebhu), kugadzirisa network kuwedzera kana kubvisa node, kupatsanura subnets uchishandisa namespaces (imwe VPN network inogona kugadzirwa kune vakati wandei vashandisi), kuronga kugovaniswa kwenodhi kune subnets munzvimbo dzakasiyana mazita. , kudzora nzira (kusanganisira kugovera nzvimbo dzekubuda kuti uwane nyika yekunze), kuwana kupatsanurwa kuburikidza neACLs, uye DNS sevhisi kushanda.
Source: opennet.ru