it-systeme
christoph ender it operations · networking · software development
about
Hi there! These pages are intended to share notes and
experiences from my work as an IT freelancer – yes, you
can hire me – working in OPs, networking and development.
contact
latest blog entry: “Routing and tunneling at Hetzner”
A few weeks ago, I encountered a situation in which I needed to route traffic via multiple VPN nodes into a private virtual network at Hetzner and provide remote systems with access to all nodes within the private network. For redundancy purposes, there were two VPN gateways that would accept traffic from outside. It turned out, however, that Hetzner's routing only accepts traffic for a subnet when it comes through a link that has that subnet configured as a routing destination. As a result, by default, only one node can route the VPN traffic to the Hetzner nodes.