this post was submitted on 25 Dec 2023

7 points (76.9% liked)

The Invisible Internet Project

1368 readers

18 users here now

I2P Community Edition

This isn't the official I2P channel, if you want go there then you can find it in the links below.

Rules

Be nice and friendly
Don't spam
No darknet markets
No malicious content
No closed source software
No excessive self promotion
No violence or hate speech
I2P related posts only
Please use English
No illegal file sharing
Lemmy rules also apply here
No crypto-currency

"Don't be a dick" - Wil Wheaton

General

Main project site (clearnet)
I2P Forum (clearnet) Official I2P community and development forum
zzz zzz's personal website, old developers forum
planet.i2p RSS aggregator

Media:

Incogtube - Youtube front end

File Hosting and Pastebins

FS Filesharing service
Cake Pastebin short term filesharing and pastebin
PrivateBin Encrypted pastebin
IDK's CowYo pastebin, Mirror (Requires JS)

Torrents

PaTracker Main torrent tracker
Chudo's Torrents (French) torrent tracker

Social Networks and Microblogging

Teddit - Privacy respecting Reddit front end
Ramble - Multi-Network reddit alternative

Exploring I2P

Notbob List online .i2p sites and categorizes them

I2P Name Registries

inr.i2p
reg.i2p operated by PurpleI2P Team
dns.chudo.i2p
isitup.i2p Another I2P Name Registry and checking tools to see if a eepsite is offline.

Search engines

IRC

Irc2P comes pre-configured with I2P. To connect with other networks, please follow this tutorial.

Irc2P (works out of the box)

Syndie

An open source system for operating distributed forums in anonymous networks

Syndie Project Syndie Project Website
Syndie Documentation Project
syndie.darrob.i2p
syndie.echelon.i2p
syndie.inscrutable.i2p
syndie.killyourtv.i2p
syndie.meeh.i2p
syndie.welterde.i2p

Inproxies

You can use inproxies to surf the I2P network without having to have an I2P router.

i2phides.me / i2p.mk16.de (i2p-inproxy.mk16.de)
onion.ly
www.darknetproxy.com

founded 1 year ago

MODERATORS

[email protected]

I need someone to do a sanity check for me and to explain encrypted lease sets (self.i2p)

submitted 8 months ago* (last edited 8 months ago) by possiblylinux127 to c/[email protected]

6 comments fedilink hide all child comments

So I'm trying to bridge to physical locations together. At one location I control the firewall and at the other I don't. I would normally use Wireguard but its all dynamic IPs so it would break every so often.

My though was to use I2P to create a bridge between the 2 places. I will use 0 hops on each with encrypted lease sets.

Is this a sain setup? What drawbacks will this have and will it be problematic? Also what security should I use for my encrypted lease set? I want only one device to connect and no others.

Edit: I think I'll use i2p for dns

top 6 comments

sorted by: hot top controversial new old

[–] [email protected] 1 points 8 months ago (1 children)

I2p seems an odd choice when DYNAMIC DNS exists for this particular situation where non static IPs are used.

[–] [email protected] 3 points 8 months ago (1 children)

In my case I use duckdns.org for DDNS, it is free and works well with wireguard.

[–] possiblylinux127 2 points 8 months ago

Not terribly secure and is not nearly as fun.

[–] [email protected] 1 points 8 months ago (1 children)

Why not something like Zerotier?

[–] possiblylinux127 1 points 8 months ago

Because that's proprietary and adds more latency. I already have a vps for routing traffic into my server farm so if I was going to to go that route I wouldn't even bother with ZeroTier

[–] [email protected] 1 points 8 months ago* (last edited 8 months ago)

Yes this is sane and one of the main use cases for encrypted lease sets. Encrypted lease sets make it impossible for unauthorized users to connect to your hidden services.

If you know beforehand that only one client needs to be able to connect, choose "DH" as a security strategy, and share the client's key with the server. This article explains these concepts in detail.

If you don't care about anonymity (given the 0-hop tunnels), you could also stick both hosts on an overlay network like Yggdrasil. This may or may not be more convenient / performant based on the number of services you want to expose.