LNI

1. About

TL;DR

A virtual private network (VPN) is a mechanism for creating a secure connection to extend access to a private network (one that disallows or restricts public access) to users who do not have direct access to it, such as an office network allowing secure access using an insecure communication medium such as the public Internet.

Wikipedia

2. Systems

2.1 Frontend

FQDN	BFH	non-BFH	IPv6	IPv4
vpn.bfh.ch

FQDN	BFH	non-BFH	IPv6	IPv4
vpnext.bfh.ch

2.2 Backend

Warning

Always use the frontend DNS record

Never use the backend nodes directly:

backend may change without notice at any time (e.g. IP addresses, DNS records, configuration, etc.)
backend has no legacy support or grace periods, changes are implemented instantly
backend can be rebootet without notice at any time
backend access will soon be restricted

FQDN	IPv6	IPv4
vc41.bfh.ch	—	147.87.19.66
vc42.bfh.ch	—	147.87.19.67

FQDN	IPv6	IPv4
vc43.bfh.ch	—	147.87.19.68

FQDN	IPv6	IPv4
vc39.bfh.ch	—	147.87.19.74

3. Features

TODO

4. Operations

TODO

5. Links

TODO

6. Backlog

Legacy

Cisco ASA EOL 2022

Setup

wireguard

VPN service

1. About

2. Systems

2.1 Frontend

2.2 Backend

Always use the frontend DNS record

3. Features

4. Operations

5. Links

6. Backlog

Legacy

Setup