Nebula: Open Source Overlay Networking

  • Be sure to checkout “Tips & Tricks”
    Dear Guest Visitor → Once you register and log-in please checkout the “Tips & Tricks” page for some very handy tips!

    /Steve.
  • BootAble – FreeDOS boot testing freeware

    To obtain direct, low-level access to a system's mass storage drives, SpinRite runs under a GRC-customized version of FreeDOS which has been modified to add compatibility with all file systems. In order to run SpinRite it must first be possible to boot FreeDOS.

    GRC's “BootAble” freeware allows anyone to easily create BIOS-bootable media in order to workout and confirm the details of getting a machine to boot FreeDOS through a BIOS. Once the means of doing that has been determined, the media created by SpinRite can be booted and run in the same way.

    The participants here, who have taken the time to share their knowledge and experience, their successes and some frustrations with booting their computers into FreeDOS, have created a valuable knowledgebase which will benefit everyone who follows.

    You may click on the image to the right to obtain your own copy of BootAble. Then use the knowledge and experience documented here to boot your computer(s) into FreeDOS. And please do not hesitate to ask questions – nowhere else can better answers be found.

    (You may permanently close this reminder with the 'X' in the upper right.)

gvlx

Member
Feb 22, 2024
17
3
Lisboa, Portugal
masto.pt
Dear Steve, and distinguished members of this forum,


I have been following (but too lazy to implement) this rather promising network project which I'd like to share with you and gather your experiences and opinions.


What if, you could simply connect all your devices, no matter where they are located, by using your own private IP network?
No VPN to setup, just add your machine to connection list and it just works. (or almost)

Well, that's what the Nebula project proposes. (With one single executable file - well two, the second generates the required certificates)


Nebula: Open Source Overlay Networking​


Nebula is an overlay networking tool designed to be fast, secure, and scalable. Connect any number of hosts with on-demand, encrypted tunnels that work across any IP networks and without opening firewall ports.

Core features​

  • Peer-to-peer, layer 3, virtual network (Technical Details)
  • Supports TCP/UDP/ICMP traffic via TUN adapter with split-tunneling
  • Host firewall with groups-based rules engine for overlay traffic
  • Route discovery and NAT traversal assisted by simple "lookup" hosts

Identity and Authorization​

Nebula uses a PKI model for establishing trust between hosts and networks.
  • Host certificates are used to securely identify and authorize peers
  • Hosts mutually authenticate by validating certificates and CA's
  • Firewall rules enforced by evaluating certificate "security groups"
Releases include nebula-cert executable to generate keys, certs, CA's, and to sign host certificates.

More information here: https://nebula.defined.net/docs/ and https://github.com/slackhq/nebula


I have no affiliation with the project, just curious.

Note: It does need some configuration and setup but it is simpler than you think.


Enjoy.


Best regards,
 
It’s been mentioned on Security Now before. Episodes 833 and 955 at least.
 
  • Like
Reactions: gvlx