Comment by FuriouslyAdrift

Except browsers and other software that are becoming hard-coded to block access to such devices.

We used to use Firefox solely for internal problem devices with IP and subnet exclusions but even that is becoming difficult.

Use the self-signed cert between the proxy and the problem device; everything else talks to the proxy.

Or Wireguard.

FuriouslyAdrift OP 2 days ago

Using VPNs on server infrastructure to punch a hole is a resume generating event.

Wireguard is not a VPN, it’s a protocol that can be used for a lot of things.

FuriouslyAdrift OP 1 day ago

The wireguard protocol is an encapsulation or tunneling protocol... which is, by definition, a virtualized private network protocol.

It's not different from IPSec, GRE, VXLAN, etc. It's just the new hotness.

We use VXLAN extensively in our network, btw, and IKEv2/IPSec tunnels between sites.

This item has no comments currently.