Tinc deployments in the USA
Tomasz Chmielewski
mangoo at wpkg.org
Wed Mar 21 09:09:29 CET 2018
On 2018-03-21 04:53, al so wrote:
> Are there any Tinc deployments in the USA in Medium sized businesses
> and small Enterprises?
>
> Use case is to provide site-to-site VPN functionality.
I'm running a tinc setup for a midsize business.
tinc is used exclusively for server-server communication - IMO it's too
complicated to set up for use for normal people (as opposed to OpenVPN).
One of our setups looks like below:
tinc-eu1 tinc-us1
/ \ / \
datacentre EU --internet-- datacentre US
\ / \ /
tinc-eu2 tinc-us2
Basically, it provides failover and high availability for servers
connecting between both datacentres. If tinc-us1 dies - traffic
automatically goes through tinc-us2.
We also use tinc in a dedicated hosting datacentre which does not
provide a LAN/VLAN for our servers.
There, each of the servers has its own public IP. We use tinc to create
a kind of LAN between them:
server_1 -- public IP -- tinc 10.a.b.c/d
|
server_2 -- public IP -- tinc 10.a.b.c/d
|
server_N -- public IP -- tinc 10.a.b.c/d
We can launch LXD containers on any of the servers, and it can connect
to other containers in the same LAN. This is quite useful.
We also have a few similar setups, where we i.e. replicate a mongo
database to a different datacentre.
Please note that tinc does not provide wire-speed performance - it is
fully userspace, and can only use one CPU core. So if you need
sub-gigabyte speeds, tinc may not be a good solution for you.
Tomasz Chmielewski
https://lxadm.com
More information about the tinc
mailing list