document/TranslateProject
2
0
Fork 0
mirror of https://github.com/LCTT/TranslateProject.git synced 2024-12-26 21:30:55 +08:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #1875 from GOLinux/master

Browse Source 
[Translated] 20141021 Configuring layer-two peer-to-peer VPN using n2n.md
This commit is contained in:
joeren 2014-10-22 10:19:16 +08:00
commit 754fd884e6
2 changed files with 84 additions and 84 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

84
sources/tech/20141021 Configuring layer-two peer-to-peer VPN using n2n.md
View File

@ -1,84 +0,0 @@
Configuring layer-two peer-to-peer VPN using n2n
================================================================================
n2n is a layer-two peer-to-peer virtual private network (VPN) which allows users to exploit features typical of P2P applications at network instead of application level. This means that users can gain native IP visibility (e.g. two PCs belonging to the same n2n network can ping each other) and be reachable with the same network IP address regardless of the network where they currently belong. In a nutshell, as OpenVPN moved SSL from application (e.g. used to implement the https protocol) to network protocol, n2n moves P2P from application to network level.
### n2n main features ###
An n2n is an encrypted layer two private network based on a P2P protocol.
Encryption is performed on edge nodes using open protocols with user-defined encryption keys: you control your security without delegating it to companies as it happens with Skype or Hamachi.
Each n2n user can simultaneously belong to multiple networks (a.k.a. communities).
Ability to cross NAT and firewalls in the reverse traffic direction (i.e. from outside to inside) so that n2n nodes are reachable even if running on a private network. Firewalls no longer are an obstacle to direct communications at IP level.
n2n networks are not meant to be self-contained, but it is possible to route traffic across n2n and non-n2n networks.
### The n2n architecture is based on two components ###
**Supernode**: it is used by edge nodes at startup or for reaching nodes behind symmetrical firewalls. This application is basically a directory register and a packet router for those nodes that cannot talk directly.
**Edge nodes**: applications installed on user PCs that allow the n2n network to be build. Practically each edge node creates a tun/tap device that is then the entry point to the n2n network.
### Install n2n on Ubuntu ###
Open the terminal and run the following commands
$ sudo apt-get install subversion build-essential libssl-dev
$ svn co https://svn.ntop.org/svn/ntop/trunk/n2n
$ cd n2n/n2n_v2
$ make
$ sudo make install
### Configure a P2P VPN with n2n ###
First we need to configure one super node and any number of edge nodes
Decide where to place your supernode. Suppose you put it on host a.b.c.d at port xyw.
Decide what encryption password you want to use to secure your data. Suppose you use the password encryptme
Decide the network name you want to use. Suppose you call it mynetwork. Note that you can use your supernode/edge nodes to handle multiple networks, not just one.
Decide what IP address you plan to use on your edge nodes. Suppose you use IP address 10.1.2.0/24
Start your applications:
### Configure Super node ###
supernode -l xyw
### Configure Edge Nodes ###
On each edge node, use the following command to connect to a P2P VPN.
sudo edge -a 10.1.2.1 -c mynetwork -k encryptme -l a.b.c.d:xyw
sudo edge -a 10.1.2.2 -c mynetwork -k encryptme -l a.b.c.d:xyw
### Now test your n2n network ###
edge node1> ping 10.1.2.2
edge node2> ping 10.1.2.1
Windows n2n VPN Client (N2N Edge GUI)
You can download N2N Edge GUI from [here][1]
N2N Edge GUI is a basic installer and GUI configuration screen for the peer-to-peer n2n' VPN solution
![](http://www.ubuntugeek.com/wp-content/uploads/2014/10/client.jpg)
--------------------------------------------------------------------------------
via: http://www.ubuntugeek.com/configuring-layer-two-peer-to-peer-vpn-using-n2n.html
作者:[ruchi][a]
译者:[译者ID](https://github.com/译者ID)
校对:[校对者ID](https://github.com/校对者ID)
本文由 [LCTT](https://github.com/LCTT/TranslateProject) 原创翻译,[Linux中国](http://linux.cn/) 荣誉推出
[a]:http://www.ubuntugeek.com/author/ubuntufix
[1]:http://sourceforge.net/projects/n2nedgegui/

84
translated/tech/20141021 Configuring layer-two peer-to-peer VPN using n2n.md Normal file
View File

@ -0,0 +1,84 @@
使用n2n配置二层点对点VPN
================================================================================
n2n是一个二层点对点虚拟专用网VPN它允许用户在网络层面而非应用层面开发典型的P2P应用功能。这就意味着用户可以获得本地IP可见性属于同一个n2n网络的两台PC可以互相ping通以及不管他们现在身处哪个网络只要有相同的网络IP地址就可以访问到。简言之就像OpenVPN将SSL从应用用于部署https协议搬到了网络协议一样n2n将P2P从应用搬到了网络层面。
### n2n主要功能 ###
n2n是一个基于P2P协议的加密的二层专用网。
加密使用开放协议部署在边缘节点它使用用户定义的加密钥匙你自己控制安全而不用授权给公司而Skype或Hamachi却是要的。
各个n2n用户可以同时属于多个网络或者社区
它拥有在反向通信方向从外部到内部穿越NAT和防火墙的能力因此可以到达n2n节点即使运行在一个专用网中。防火墙不再是IP层面掌控通信的障碍。
n2n网络并不意味着它是独立的它可以在n2n和非n2n网络间路由通信。
### n2n架构基于两个组件 ###
**超级节点**:它在启动时用于边缘节点或用于达到对称防火墙后面的节点。对于这些节点,该应用主要是一个目录暂存器和包路由器,而不是直接通信。
**边缘节点**安装在用户PC的应用程序它允许构建n2n网络。实际上各个边缘节点创建一个tun/tap设备该设备是n2n网络的进入点。
### 安装n2n到Ubuntu ###
打开终端并运行以下命令
$ sudo apt-get install subversion build-essential libssl-dev
$ svn co https://svn.ntop.org/svn/ntop/trunk/n2n
$ cd n2n/n2n_v2
$ make
$ sudo make install
### 使用n2n配置P2P VPN ###
首先,我们需要配置一个超级节点和任意数量的边缘节点。
决定将超级节点放在哪个地方。假设你将它放到了主机a.b.c.d的xyw端口上。
决定使用何种密码加密来保证数据安全。假设你使用密码encryptme。
决定你想要使用的网络名称。假设你将它命名为mynetwork。注意你可以使用超级节点/边缘节点来处理多个网络,不仅仅只有一个哦。
决定在边缘节点上使用什么IP地址。假设你使用10.1.2.0/24。
启动应用:
### 配置超级节点 ###
supernode -l xyw
### 配置边缘节点 ###
在各个边缘节点使用以下命令来连接到P2P VPN。
sudo edge -a 10.1.2.1 -c mynetwork -k encryptme -l a.b.c.d:xyw
sudo edge -a 10.1.2.2 -c mynetwork -k encryptme -l a.b.c.d:xyw
### 现在来测试你的n2n网络 ###
edge node1> ping 10.1.2.2
edge node2> ping 10.1.2.1
Windows n2n VPN客户端N2N边缘图形界面
你可以从[这里][1]下载N2N边缘图形界面。
N2N边缘图形界面是一个基本的安装器和用于点对点n2n VPN解决方案的GUI配置界面。
![](http://www.ubuntugeek.com/wp-content/uploads/2014/10/client.jpg)
--------------------------------------------------------------------------------
via: http://www.ubuntugeek.com/configuring-layer-two-peer-to-peer-vpn-using-n2n.html
作者:[ruchi][a]
译者:[GOLinux](https://github.com/GOLinux)
校对:[校对者ID](https://github.com/校对者ID)
本文由 [LCTT](https://github.com/LCTT/TranslateProject) 原创翻译,[Linux中国](http://linux.cn/) 荣誉推出
[a]:http://www.ubuntugeek.com/author/ubuntufix
[1]:http://sourceforge.net/projects/n2nedgegui/