13 barn owls in a trenchcoatSep 16, 2024
I was thinking of deploying Tailscale for lazy VPN Mesh Networking, but my opinions for SSO are Google, Microsoft, Microsoft in a different hat, Apple... or setting up a new OpenID Connect provider, which makes this project instantly more complicated... but potentially more fun/publishable?
Show thread13 barn owls in a trenchcoatSep 16, 2024

@kkarhan I already run pfSense, the Tailscale idea is for potential client projects!

(I write tutorials and docs as one of my gigs.)

Show threadFrank HeijkampSep 16, 2024

@kkarhan @HauntedOwlbear Sadly the linked site seems to have technical issues.

Regarding WireGuard VPN tunnels, I have configured a couple of MikroTik routers to offload the VPN traffic to dedicated hardware in order to create site-to-site connections and for clients in the field, so called 'Road Warriors', to connect to. It is decentralised and therefore very robust.

Show threadFrank Heijkamp
@kkarhan @HauntedOwlbear Depends on the kind of VPN throughput you are looking for. I'm perfectly happy with a good 200 Mbps per connection. That's plenty for my applications.
Sep 16, 2024 at 11:04amWeb