To check the number of nodes in the VPN solution?

There is some service that sells VPN access. Some of his configs provide (as stated by authors) double or even triple VPN. I.e. traffic passes through not 1 PC, but 2 or 3.


Tracing is when you double VPN looks like this:

traceroute www.google.com

traceroute to www.google.com (74.125.232.114), 30 hops max, 60 byte packets

1 10.109.0.1 (10.109.0.1) 84.353 84.717 85.308 ms ms ms

2 10.44.0.2 (10.44.0.2) 105.693 105.782 167.623 ms ms ms

3 mil01s07-in-f18.1e100.net (74.125.232.114) 167.632 167.639 167.639 ms ms ms



at the same OpenVPN client config looks like this:

client


dev tun


proto tcp-client


remote-random


remote 106.4.72.192 5624




remote 25.75.73.197 5622




remote 82.17.86.249 5624




tls-auth keys/ta.key 1


ca keys/ca.crt


cert keys/client.crt


key keys/client.key


ns-cert-type server


resolv-retry infinite


nobind


persist-key


persist-tun


reneg-sec 0


redirect-gateway def1


keysize 256


comp-lzo


verb 1


log-append log/Double_VPN.log


status log/Double_VPN-status.log


script-security 2


auth-nocache


auth-user-pass


#auth-user-pass auth


up scripts/se1_up


scripts down/down



ie in the config file you will see 3 servers, and on tracing, see 2 (third to the Google)


but what a picture for triple VPN:

traceroute to www.google.com (74.125.157.99), 30 hops max, 60 byte packets

1 10.61.0.1 (10.61.0.1) 86.444 86.464 86.461 ms ms ms

2 * * *

3 10.25.0.2 (10.25.0.2) 255.967 256.218 256.383 ms ms ms

4 gy-in-f99.1e100.net (74.125.157.99) 309.563 397.874 396.985 ms ms ms



and his config is:

client


dev tun


proto tcp-client


remote-random


remote 85.3.46.111 5600




##remote 86.71.34.111 5602


#


tls-auth keys/ta.key 1


ca keys/ca.crt


cert keys/client.crt


key keys/client.key


ns-cert-type server


resolv-retry infinite


nobind


persist-key


persist-tun


reneg-sec 0


redirect-gateway def1


keysize 256


comp-lzo


verb 1


log-append log/Triple-VPN.log


status log/Triple-VPN-status.log


script-security 2


auth-nocache


#auth-user-pass


auth-user-pass auth


up scripts/pa1_up


scripts down/down



ie in the config provided here 2 servers.


Can anyone comment on where in the end double and triple VPN where?
October 8th 19 at 02:20
2 answers
October 8th 19 at 02:22
In the second configuration specify a single server as I see.
In the first plays the role option remote-random, which is necessary for balancing the load on the server. It makes it so that every time You connect to a "random" server of the specified remote.

I did not understand what is meant by "triple" and "double" Wpname. If VPN inside VPN, then this one. In this case, as I recall, in trace You can't see anything except the start and end points "most inside" of the VPN. If You see "the outer layers", this is bad.

If this refers to the balancing, then triple — first, because there are three servers waiting for connections, and double — second, if you uncomment the line ##remote 86.71.34.111 5602. But it is not called.

If this refers to the three host through which sequentially passes through traffic, the double — first. Because in this case the hops, we see the potential, and the first trace can clearly see that the two of them. By process of elimination, we find that the second config — triple VPN.
But it's all pitchfork on the water. Surely something can be said by looking at them from the inside.
October 8th 19 at 02:24
Double and triple VPN is not done by means of configuration, and means tunneling from one VPN server to another, it administrator and you can not change.

Find more questions by tags VPN