Results 1 to 7 of 7
Hybrid View
-
07-15-2008, 08:11 AM #1New Member
- Join Date
- Jul 2008
- Posts
- 2
VPN tunnels away from Sweden. Where to?
The Swedish parliament just passed a law mandating all information passing the Swedish borders to be copied to the government (no kidding). We wish to offer people VPN tunnels out of the country to protect their communication and therefore need:
* A location with good connectivity with Sweden (like somewhere in Europe)
* A location where traffic is not normally routed through Sweden (such as Finland)
* Lots of bandwidth
* Many IP addresses
* No storage space
* Linux
Where to turn for something like that?
-
07-15-2008, 09:36 AM #2Junior Guru
- Join Date
- Mar 2008
- Location
- UK
- Posts
- 220
Hello,
Yes, that law is a bit scary, it may push people to start using encryption for everything by default. Of course only end-to-end encryption really protects communications, so the tunnels you want are of limited value, but that is entirely your business.
Lots of bandwidth and no storage is going to be a custom setup, I wouldn't look at stock VPS plans for that, but for providers you can come to an arrangement with.
The hardest part is going to be the IP addresses. Of course if you just buy one VPS per client you get one IP address, no problem. Your usage would be clearly justified and normal. The routing might be a little tricky to set up but you only have to do that once.
You could also use a single VPS with a huge number of IP addresses. This can be trickier, not because your use isn't justified, but your chosen provider should probably handle it as a separate RIPE request for you so everything is clear and in place from the outset.
There are some issues you didn't touch upon, such as what you are allowed to do from your VPS (e.g. IRC communications are often not allowed, so even running an IRC client over the VPN would be forbidden), and processor and memory requirements. OpenVPN is pretty good on memory, but encryption does take quite a few cycles.
JimBlue Room Hosting - High availability UK VPS
KVM Plans - Multiple OS support. Virtual console and CD drive.
-
07-15-2008, 10:53 AM #3Rockin' the beer gut
- Join Date
- May 2006
- Location
- NJ, USA
- Posts
- 6,645
A VPS would not work. If you are doing encryption, encryption uses a lot of CPU. You would need a very powerful server for this.
AS395558
-
07-15-2008, 12:48 PM #4Junior Guru
- Join Date
- Mar 2002
- Location
- London
- Posts
- 228
We have many customers running personal VPNs on their Xen VPS plans but I agree for mass scale purposes dedicated server(s) would be more appropriate.
Requesting many IPs should not be a problem where there is good justification, though I suspect for some uses you could run multiple tunnels on one IP.
Amsterdam, London and Frankfurt would be the usual hotspots for good and cost effective connectivity.Andrew Ogilvie | Xtraordinary Hosting | AS30827 | Member of LINX
Dedicated Servers in Central London | Xen VPS Linux & Windows | Complex Hosting | London BGP4 Bandwidth
-
07-15-2008, 12:57 PM #5New Member
- Join Date
- Jul 2008
- Posts
- 2
When testing OpenVPN on an Intel E8200 2.66 GHz it can transmit 13 MB/s at 60% load (and receive several times more). Can a few hundred kB/s then really be a problem?
-
07-15-2008, 01:09 PM #6Web Hosting Master
- Join Date
- Oct 2006
- Location
- US/EU/UK
- Posts
- 4,886
This is weird... I think NEtherlands should be a good place for you.
HostColor.com ★★ Edge Infrastructure - US Dedicated Servers & Europe Dedicated Hosting ★ since 2000
In 50 U.S. Edge Data Centers & 80 POPs worldwide
24/7 Support ★★ Support Tickets - LiveChat - Phone
-
07-15-2008, 05:19 PM #7******* Unleaded
- Join Date
- Feb 2004
- Posts
- 3,849
You should really be looking at colocation space.
This is because for the scale you want, the hardware is usually rack mountable 1U to 3U in form factor, but is not general purpose servers. They may start out as x86 boxes, but have hardware assisted crypto acceleration layered on top. There are two of them cracked open on the shelf above my head awaiting completion of firmware modifications.
The vendor thinks they are tamper proof, uhm, nope ...
Another vote for NL here. 040hosting is NL based and hangs around here.Last edited by plumsauce; 07-15-2008 at 05:25 PM.
edgedirector.com
managed dns global failover and load balance (gslb)
exactstate.com
uptime report for webhostingtalk.com