ungleich-public
/
ungleich-staticcms
6
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

products/vpn: add introduction

This commit is contained in:
Nico Schottelius 2022-02-17 22:35:27 +01:00
parent e5107e84ff
commit 0125b7d257
1 changed files with 41 additions and 29 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

70
content/u/products/vpn-server-as-a-service/contents.lr
View File

@ -20,12 +20,11 @@ nav_classes: navbar-dark
---
FIXMEimage: /u/image/cards/supportsystem.jpg
---
feature1_title: Scalable
feature1_title: Ready for teams
---
feature1_text:
Need just a single VPN server? Easy, we got you covered.
Need 2, 3 or many more VPN servers? No problem, deploy and manage them
exactly the same.
---
feature2_title: Made for developers with GitOps
---
@ -46,22 +45,15 @@ content1_text:
## VPN Server as a Service (VPNSaaS)
This service allows you to manage VPN connections on your own VPN
servers. You manage zone files and zone records in the standard BIND
format.
### Not included
This service does not register a domain or manage your SSL
certificates. It is purely allowing you to manage your VPN zones files
without having to run your own VPN server.
The VPN server does not support IXFR or AXFR request. The
distribution of VPN information is assumed to be done by other means
such as git.
servers. You manage client configurations using the standard
Wireguard configuration format.
## Features
The provided VPN servers are reachable via IPv6 and IPv4.
They are available in IPv6 only and dual stack (IPv6 + IPv4) versions.
The VPN servers are configured to pull from the configured repository
every 5 minutes.
@ -75,20 +67,39 @@ There are a few simple steps required:
* Create a git repository anywhere you want - for instance on
[code.ungleich.ch](https://code.ungleich.ch) with an [ungleich
account](https://account.ungleich.ch).
* Create the zone files in the directory "zones/"
* Every file in the zones/ directory becomes a zone served by the VPN
server
* The zone ("domain") is infered from the filename
* Symbolic links are supported, so you can have different zones with
the same content
* Create a wireguard configuration file named wg0.conf
## VPN Server modes
The needs for VPN protection are different depending on your situation
and we show some common modes on how to use the VPN server.
### IPv6 only
If you want to enable your clients with IPv6, you can assign
IPv6 addresses or IPv6 subnetworks to the clients.
### Dedicated Public IPv4
If you want your client to be reachable via IPv4 from the outside, you
can make them reachable by assigning the client a dedicated public
IPv4 address.
This mode can be combined with the IPv6 mode above.
### Shared Public IPv4
If you want your your clients to reach the IPv4 Internet via a shared
public IPv4 address. This is the "typical VPN mode".
This mode can be combined with the IPv6 mode above.
## Fully Open Source and IPv6 enabled
The VPN is completely based on Open
Source Software components. From the operating system to the software
stack, nothing is closed. This service is based
on [Knot-VPN](https://www.knot-vpn.cz/).
on [Wireguard](https://www.wireguard.com/).
## Zero Carbon Hosting
@ -99,13 +110,14 @@ Data Center.](httsp://datacenterlight.ch)
Your own VPN server is available in 2 versions:
* IPv6 only VPN server with a /48 network:
* IPv6 only VPN server with a /48 network: 37 CHF/month
* Dual stack (IPv6+IPv4) VPN server with a /48 network: 46.5 CHF/month
including IPv6 and IPv4 reachability is 17
CHF/month with a 25 CHF setup fee.
Every additional public IPv6 /48 network is 5 CHF/month.
Every additional public IPv4 address is 9.5 CHF/month.
The one time setup fee is 25 CHF.
## How to order
As the support system can be setup for very different use cases, we
recommend to contact us at **support -at- ungleich.ch** to discuss how
you would like to have your system setup.
You can order via **support -at- ungleich.ch**.