Upgrade to Pro — share decks privately, control downloads, hide ads and more …

punchVPN-dansk

Sponsored · SiteGround - Reliable hosting with speed, security, and support you can count on.
Avatar for Claus Lensbøl Claus Lensbøl
May 13, 2013
Programming
1
260

 punchVPN-dansk

Danish walk-through of the punchVPN program

Avatar for Claus Lensbøl

Claus Lensbøl

May 13, 2013
Tweet

Other Decks in Programming

See All in Programming
CSC307 Lecture 08
Avatar for Javier Gonzalez-Sanchez javiergs
PRO
0
670
dchart: charts from deck markup
Avatar for Anthony Starks ajstarks
3
1k
20260127_試行錯誤の結晶を1冊に。著者が解説 先輩データサイエンティストからの指南書 / author's_commentary_ds_instructions_guide
Avatar for nash_efp nash_efp
1
980
Best-Practices-for-Cortex-Analyst-and-AI-Agent
Avatar for ryotaro.ikeda@finatext.com ryotaroikeda
1
110
なぜSQLはAIぽく見えるのか/why does SQL look AI like
Avatar for florets1 florets1
0
480
Lambda のコードストレージ容量に気をつけましょう
Avatar for tatsuki-yamada tattwan718
0
140
24時間止められないシステムを守る-医療ITにおけるランサムウェア対策の実際
Avatar for kouki.miura koukimiura
1
120
Automatic Grammar Agreementと Markdown Extended Attributes
について
Avatar for Kishikawa Katsumi kishikawakatsumi
0
200
CSC307 Lecture 04
Avatar for Javier Gonzalez-Sanchez javiergs
PRO
0
660
QAフローを最適化し、品質水準を満たしながらリリースまでの期間を最短化する #RSGT2026
Avatar for shibayu36 shibayu36
2
4.4k
AIエージェントのキホンから学ぶ「エージェンティックコーディング」実践入門
Avatar for Masahiro Nishimi masahiro_nishimi
5
540
CSC307 Lecture 09
Avatar for Javier Gonzalez-Sanchez javiergs
PRO
1
840

Featured

See All Featured
Kristin Tynski - Automating Marketing Tasks With AI
Avatar for Tech SEO Connect techseoconnect
PRO
0
150
Bioeconomy Workshop: Dr. Julius Ecuru, Opportunities for a Bioeconomy in West Africa
Avatar for AKADEMIYA2063 akademiya2063
PRO
1
55
Ruling the World: When Life Gets Gamed
Avatar for Sebastian Deterding codingconduct
0
150
Code Reviewing Like a Champion
Avatar for maltzj maltzj
527
40k
Visualization
Avatar for Eitan Lees eitanlees
150
17k
Odyssey Design
Avatar for Ryan Kendrick rkendrick25
PRO
1
500
Sam Torres - BigQuery for SEOs
Avatar for Tech SEO Connect techseoconnect
PRO
0
190
The AI Search Optimization Roadmap by Aleyda Solis
Avatar for Aleyda Solis aleyda
1
5.2k
The Invisible Side of Design
Avatar for Vitaly Friedman smashingmag
302
51k
Building a A Zero-Code AI SEO Workflow
Avatar for Ian Lurie portentint
PRO
0
320
BBQ
Avatar for Matthew Crist matthewcrist
89
10k
How Fast Is Fast Enough? [PerfNow 2025]
Avatar for Tammy Everts tammyeverts
3
460

Transcript

  1. punchVPN p2p VPN tunneler bag NAT

  2. Facts • Klient - Python3.2 • Server - Python2.7 Kommende

    Win32+OSX+UNIX support

  3. Hvad skal det til for? • Sikkerhed • Anonymitet •

    Direkte forbindelse

  4. ✘ Skidt måde at snakke sammen på A B 3.

    part ☠ Forbindelse via 3. part Krypteret eller ukrypteret

  5. ✔ God måde at snakke sammen på A B 3.

    part ☠ Direkte krypteret forbindelse udenom 3. part

  6. Verdensbillede A B punch VPN Server Internet FW FW

  7. Klient A -> Server A B punch VPN Server Internet

    FW FW 1.

  8. Klient B -> Server A B punch VPN Server Internet

    FW FW 1. 2.

  9. Klient A <-> Klient B A B punch VPN Server

    Internet FW FW 1. 2. 3.

  10. Forbindelsesmetoder A B punch VPN Server Internet FW FW 1.

    2. 3. NAT-PMP UPnP-IGD UDP-HolePunch

  11. Hvem kan forbinde? NAT-PMP UPnP-IGD Direct mapping Random mapping NAT-PMP

    ✔ ✔ ✔ ✔ UPnP-IGD ✔ ✔ ✔ ✔ Direct mapping ✔ ✔ ✔ ✘ Random mapping ✔ ✔ ✘ ✘

  12. [code] punchVPNd/punchVPNd.py:108

  13. NAT-PMP Dynamisk firewall

  14. Hvordan virker det? • Simpel protokol • Apple-Bonjour

  15. Bed om den eksterne IP adresse Data der skal sendes:

    0b0000000000000000 Modtaget data: 0 1 2 3 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Vers = 0 | OP = 128 + 0 | Result Code (net byte order) | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Seconds Since Start of Epoch (in network byte order) | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | External IPv4 Address (a.b.c.d) | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+

  16. Revisionerne, det nye def create_payload(self, local_port, external_port, lifetime): return pack('>2B3HI',

    0, 1, 0, local_port, external_port, lifetime)

  17. [code] natPMP/natPMP.py:49 natPMP/natPMP.py:70

  18. Greenlets og Gevent Micro threads og long polling

  19. Greenlets • Micro Threading • God scheduling

  20. Gevent • Modul på libevent • Bruger Greenlets • Monkey-patcher

    Python • Webserver

  21. Long polling • Lange HTTP(S) kald • Næsten en socket

    while(1): new_request_event.wait() if me.peer: msg = {'status': 'READY'} msg = json.dumps(msg) return msg new_request_event.set() new_request_event.clear()

  22. [code] punchVPNd/punchVPNd.py:71 punchVPNd/punchVPNd.py:132

  23. Et eksempel

  24. Server og klient Hvordan hænger det sammen

  25. JSON • Nemt at udvide • Ensartet syntax { "me.VPNaddr"

    : "169.254.45.221", "me.mode" : "p2p", "peer.VPNaddr" : "169.254.45.222", "peer.ip" : "130.225.204.238", "peer.lport" : 15544, "status" : "READY" }

  26. Demonstration Ellers er det jo bare en masse ord

  27. UDP hole punching

  28. [demo]

  29. Spørgsmål? • https://github.com/cmol/punchVPN/ • https://twitter.com/lensboel • https://speakerdeck.com/cmol/punchvpn- dansk