SoylentNews

Fnord666 [soylentnews.org] writes:

Nebula VPN routes between hosts privately, flexibly, and efficiently [arstechnica.com]

Last month, the engineering department at Slack [slack.com]—an instant messaging platform commonly used for community and small business organization—released a new distributed VPN mesh tool called Nebula [slack.engineering]. Nebula is free and open source software, available under the MIT license [github.com].

It's difficult to coherently explain Nebula in a nutshell. According to the people on Slack's engineering team, they asked themselves "what is the easiest way to securely connect tens of thousands of computers, hosted at multiple cloud service providers in dozens of locations around the globe?" And (developing) Nebula was the best answer they had. It's a portable, scalable overlay networking tool that runs on most major platforms, including Linux, MacOS, and Windows, with some mobile device support planned for the near future.

Nebula-transmitted data is fully encrypted using the Noise [noiseprotocol.org] protocol framework, which is also used in modern, highly security-focused projects such as Signal [signal.org] and WireGuard [wireguard.com]. Unlike more traditional VPN technologies—including WireGuard—Nebula automatically and dynamically discovers available routes between nodes and sends traffic down the most efficient path between any two nodes rather than forcing everything through a central distribution point.

Original Submission