VPN Explanation and Privacy Concerns

~~Computer~~

What networkingMy isVPN aDoes

~~vast~~

~~and~~

Allow ~~complex~~your ~~area~~device(s) to connect to my services.

Allow my services to connect to your device(s).

What My VPN Doesn't

Allow other users of ~~study. While a~~the VPN ~~itself is simple~~ to ~~explain,~~see ~~that~~or ~~assumes you already have a fundamental understanding of several computer networking concepts. This page assumes you~~ ~~do not~~ ~~have these fundamental understandings. With this in mind, this page is purposefully incorrect and over-simplistic~~interact with ~~its~~your ~~explanations~~device(s).

Route ~~the~~any ~~interest~~internet-bound oftraffic.

~~easier~~

~~understanding. Do not use this page as a factual/educational resource. For further reading, visit~~ ~~Wikipedia's article on VPNs~~.

~~Understanding a virtual private network is actually fairly simple, but by better understanding the technology you may begin to ask questions about privacy and security implications.~~

ZeroTier

I utilize software called ZeroTier isto acreate ~~company~~my ~~that~~VPN. ~~produces~~ZeroTier ~~peer-to-peer~~provides several advantages over more traditional VPN software ~~which~~and, wemost ~~use~~importantly, is arguably the easiest for ~~connecting~~you to ~~our~~set ~~services.~~up ~~While~~on Iyour ~~will~~device. ~~often~~All ~~refer~~you have to ~~the~~do ~~software~~is ~~as ZeroTier,~~install the ~~software~~program, ~~itself~~enter ismy ~~technically~~network ~~called~~ID, ~~ZeroTier~~and ~~One.~~done. ~~ZeroTier~~No ~~provides~~scary menus, no fifty-step setup process. Just a ~~web-based~~few ~~control~~clicks/taps ~~panel~~and ~~for~~you're mydone.

ZeroTier, like most other VPN ~~network~~solutions, ~~where~~encrypts Iall ~~can configure access to the network and customize firewall rules.~~

ZeroTier One

~~The VPN client itself is what you will interact with and it comes~~traffic in ~~two~~transit. ~~parts:~~This ameans ~~user-interface~~that ~~(UI)~~even ~~program and the actual VPN connection service. Whenever you interact with ZeroTier,~~if you are ~~actually~~on ~~interacting~~an ~~with~~insecure ~~that~~network, UIall ~~program~~traffic ~~and~~going to my services will be encrypted.

While ZeroTier has the capability to route all of your internet traffic through the VPN, my network is not ~~the~~set up to do this since I have no interest in seeing your internet-bound traffic or having it go through my IP address. My VPN ~~itself.~~only ~~The~~routes ~~VPN~~traffic going to my services. Your internet-bound traffic is ~~run~~untouched. by a background program (service in Windows). From the UI program, you can connect/disconnect from the network which essentially enables/disables the background program, but it is important to understand that these are two separate things.

Firewall

My VPN has a fairly strict firewall configuration. The actual, raw firewall configuration can be found on the wiki, but a summarized version is provided below. For any given piece of data sent on the VPN, its details are matched with the rules below in order from top to bottom. The moment a successful match is made, the rule is processed and no further rules are considered. For example, if a piece of data is web traffic and its headed to my wiki then it will be allowed. If it's web traffic but its trying to go to another client on the network then it will be dropped.

Rule	Protocol	From	To
Allow	ARP	Everyone	Everyone
Allow	Anything	My Servers	Everyone
Allow	ICMP	Everyone	My Servers
Allow	Various Ports	Everyone	My Various Servers
Drop	Anything	Everyone	Everyone