{"id":5830,"date":"2023-12-09T12:47:49","date_gmt":"2023-12-09T12:47:49","guid":{"rendered":"https:\/\/csiag.eu\/?p=5830"},"modified":"2024-05-04T06:28:27","modified_gmt":"2024-05-04T06:28:27","slug":"vpn","status":"publish","type":"post","link":"https:\/\/csiag.eu\/cs\/blog\/2023\/12\/09\/vpn\/","title":{"rendered":"VPN"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_82_2 counter-hierarchy ez-toc-counter ez-toc-grey ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Obsah<\/p>\n<span class=\"ez-toc-title-toggle\"><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/csiag.eu\/cs\/blog\/2023\/12\/09\/vpn\/#Grundlagen\" >Z\u00e1klady<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/csiag.eu\/cs\/blog\/2023\/12\/09\/vpn\/#Auswahl-Kriterien\" >V\u00fdb\u011brov\u00e1 krit\u00e9ria<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/csiag.eu\/cs\/blog\/2023\/12\/09\/vpn\/#VPN_Hardware\" >Hardware VPN<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/csiag.eu\/cs\/blog\/2023\/12\/09\/vpn\/#VPN_Software\" >Software VPN<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/csiag.eu\/cs\/blog\/2023\/12\/09\/vpn\/#Software_VPN_Provider_%E2%80%93_eine_Auswahl\" >Poskytovatel\u00e9 softwarov\u00fdch VPN - v\u00fdb\u011br<\/a><\/li><\/ul><\/nav><\/div>\n<span class=\"span-reading-time rt-reading-time\" style=\"display: block;\"><span class=\"rt-label rt-prefix\">Doba \u010dten\u00ed<\/span> <span class=\"rt-time\"> 3<\/span> <span class=\"rt-label rt-postfix\">minuty<\/span><\/span>\n<p>VPN znamen\u00e1 <strong>V<\/strong>irtu\u00e1ln\u00ed <strong>P<\/strong>rivate <strong>N<\/strong>\u010dap\u00ed hn\u00edzdo. Virtu\u00e1ln\u00ed, proto\u017ee se jedn\u00e1 o s\u00ed\u0165, kter\u00e1 vytv\u00e1\u0159\u00ed spojen\u00ed mezi dv\u011bma body prost\u0159ednictv\u00edm r\u016fzn\u00fdch server\u016f (VPN br\u00e1ny) v extern\u00ed s\u00edti. Nap\u0159\u00edklad dom\u00e1c\u00ed kancel\u00e1\u0159 (s\u00ed\u0165 A) p\u0159es internet (s\u00ed\u0165 B) se s\u00edt\u00ed u zam\u011bstnavatele (s\u00ed\u0165 C).<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Grundlagen\"><\/span>Z\u00e1klady<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>\u0160ifrov\u00e1n\u00ed dat a opr\u00e1vn\u011bn\u00ed k p\u0159\u00edstupu obvykle spravuje p\u0159\u00edslu\u0161n\u00fd sm\u011brova\u010d nebo samostatn\u00fd v\u00fdkonn\u011bj\u0161\u00ed hardware VPN. Protokol VPN p\u0159edstavuje transportn\u00ed trasu jednotliv\u00fdch datov\u00fdch paket\u016f a realizuje jejich doru\u010den\u00ed spr\u00e1vn\u00e9mu p\u0159\u00edjemci pomoc\u00ed extern\u011b \"vtisknut\u00fdch\" adresn\u00edch \u00fadaj\u016f, podobn\u00fdch \u0161t\u00edtku na z\u00e1silce nalepen\u00e9mu zven\u010d\u00ed, prost\u0159ednictv\u00edm tzv. tunelu VPN, kter\u00fd nelze zven\u010d\u00ed zobrazit, a dokonce ani s n\u00edm manipulovat. Obsah datov\u00fdch paket\u016f nem\u016f\u017ee b\u00fdt protokolem VPN rozpozn\u00e1n. Ka\u017ed\u00e9 p\u0159ed\u00e1n\u00ed paketu z jedn\u00e9 s\u00edt\u011b do druh\u00e9 je rovn\u011b\u017e realizov\u00e1no p\u0159eadresov\u00e1n\u00edm, tj. zm\u011bnou \u0161t\u00edtku paketu, dokud paket nedoraz\u00ed ke kone\u010dn\u00e9mu p\u0159\u00edjemci. Teprve pot\u00e9 je p\u0159\u00edjemce schopen paket otev\u0159\u00edt a data rozbalit.<\/p>\n\n\n\n<p>Pokud m\u00e1 n\u011bkdo fyzick\u00fd p\u0159\u00edstup k p\u0159\u00edslu\u0161n\u00fdm server\u016fm, m\u016f\u017ee sledovat cestu od odes\u00edlatele k p\u0159\u00edjemci a naopak. Pokud poskytovatel podporuje multihop funkcionalitu, tj. p\u0159ep\u00edn\u00e1n\u00ed mezi r\u016fzn\u00fdmi servery v r\u016fzn\u00fdch zem\u00edch, st\u00e1v\u00e1 se to t\u00e9m\u011b\u0159 nemo\u017en\u00fdm, proto\u017ee dan\u00e1 osoba by musela b\u00fdt fyzicky p\u0159\u00edtomna na serverech v p\u0159\u00edslu\u0161n\u00fdch zem\u00edch ve stejnou dobu ...<\/p>\n\n\n\n<p>Proto\u017ee ka\u017ed\u00fd server m\u00e1 IP adresu, kter\u00e1 ho jednozna\u010dn\u011b identifikuje, lze v\u017edy vysledovat ka\u017ed\u00fd po\u017eadavek serveru. V r\u00e1mci politick\u00fdch opat\u0159en\u00ed zem\u011b blokuj\u00ed ur\u010dit\u00e9 rozsahy IP adres, tj. p\u0159\u00edstup na webov\u00e9 str\u00e1nky jin\u00fdch zem\u00ed.<\/p>\n\n\n\n<p>Do hry zde vstupuje tak\u00e9 VPN, proto\u017ee pokud u\u017eivatel prost\u0159ednictv\u00edm VPN vyto\u010d\u00ed webovou str\u00e1nku, jej\u00ed\u017e IP je blokov\u00e1na, je tento po\u017eadavek zabalen do paketu VPN a n\u00e1sledn\u011b p\u0159es server VPN poskytovatele VPN p\u0159eposl\u00e1n na po\u017eadovan\u00fd, ofici\u00e1ln\u011b blokovan\u00fd server, kter\u00fd paket rozbal\u00ed a do vr\u00e1cen\u00e9ho paketu zabal\u00ed po\u017eadovan\u00fd obsah, kter\u00fd je na stran\u011b p\u0159\u00edjemce op\u011bt rozbalen a jeho obsah se zobraz\u00ed na p\u0159\u00edslu\u0161n\u00e9 webov\u00e9 str\u00e1nce.<\/p>\n\n\n\n<p>VPN umo\u017e\u0148uje navazovat zabezpe\u010den\u00e1 datov\u00e1 spojen\u00ed prost\u0159ednictv\u00edm s\u00edt\u011b nes\u010detn\u00fdch server\u016f VPN p\u0159es spojen\u00ed, kter\u00e1 nelze zven\u010d\u00ed kontrolovat a kter\u00e1 se mohou pravideln\u011b m\u011bnit, a to i v r\u016fzn\u00fdch zem\u00edch.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Auswahl-Kriterien\"><\/span>V\u00fdb\u011brov\u00e1 krit\u00e9ria<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>Jak VPN pou\u017e\u00edvat? Co k tomu pot\u0159ebujete? Je lep\u0161\u00ed VPN hardwarov\u011b, nebo softwarov\u011b?<\/p>\n\n\n\n<p>Existuje mnoho zp\u016fsob\u016f, jak z\u00edskat VPN. Nejjednodu\u0161\u0161\u00ed je vyhledat poskytovatele VPN a pomoc\u00ed dodan\u00e9ho programu (software VPN) nastavit p\u0159ipojen\u00ed VPN k jednomu z jeho dostupn\u00fdch server\u016f VPN.<br>V tomto p\u0159\u00edpad\u011b p\u0159eb\u00edr\u00e1 b\u0159emeno \u0161ifrov\u00e1n\u00ed dat datov\u00e9 centrum poskytovatele.<\/p>\n\n\n\n<p>M\u016f\u017eete tak\u00e9 pou\u017e\u00edt sm\u011brova\u010d s vestav\u011bnou funkc\u00ed VPN, zadat p\u0159\u00edslu\u0161n\u00e9 \u00fadaje poskytovatele pro nastaven\u00ed p\u0159ipojen\u00ed VPN a \u0161ifrov\u00e1n\u00ed dat nechat na sm\u011brova\u010di, co\u017e v\u0161ak m\u016f\u017ee v\u00e9st ke zpomalen\u00ed datov\u00e9ho provozu, proto\u017ee standardn\u00ed sm\u011brova\u010de nejsou obecn\u011b navr\u017eeny pro takovou \u00farove\u0148 v\u00fdpo\u010detn\u00edho v\u00fdkonu.<\/p>\n\n\n\n<p>Dal\u0161\u00ed mo\u017enost\u00ed je pou\u017e\u00edt za\u0159\u00edzen\u00ed (hardware VPN), kter\u00e9 je zapojeno mezi p\u0159ipojen\u00ed DSL a sm\u011brova\u010d a realizuje p\u0159ipojen\u00ed VPN a \u0161ifrov\u00e1n\u00ed poskytovan\u00e9 poskytovatelem.<\/p>\n\n\n\n<p>Nev\u00fdhodou softwaru VPN m\u016f\u017ee b\u00fdt to, \u017ee online streamovac\u00ed slu\u017eby, jako je Amazon Prime, rozpoznaj\u00ed, jakmile je po\u017eadavek na p\u0159ipojen\u00ed VPN p\u0159ijat, a odm\u00edtnou jej. Hardware VPN, jak je uvedeno n\u00ed\u017ee, nicm\u00e9n\u011b umo\u017e\u0148uje neomezen\u00e9 pou\u017e\u00edv\u00e1n\u00ed.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"VPN_Hardware\"><\/span>Hardware VPN<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>Jak\u00fd hardware VPN je k dispozici? Krom\u011b aditivn\u00edho VPN firewallu, kter\u00fd propou\u0161t\u00ed pouze pakety VPN, kter\u00e9 byly odpov\u00eddaj\u00edc\u00edm zp\u016fsobem legitimizov\u00e1ny, nebo p\u0159es sv\u00e9 internetov\u00e9 rozhran\u00ed pouze p\u0159epos\u00edl\u00e1 p\u0159\u00edchoz\u00ed pakety VPN tunelu na p\u0159\u00edslu\u0161n\u00fd server, jsou v sou\u010dasn\u00e9 dob\u011b k dispozici n\u00e1sleduj\u00edc\u00ed za\u0159\u00edzen\u00ed <a href=\"https:\/\/www.shellfire.de\/blog\/vpn-hardware\/\" target=\"_blank\" rel=\"noreferrer noopener\">Shellfire<\/a> s boxem Shellfire a\u017e 50 MBit\/s downstream a neomezen\u00fdm provozem.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"VPN_Software\"><\/span>Software VPN<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>Poskytovatel\u00e9 VPN poskytuj\u00ed software VPN ke sta\u017een\u00ed a nab\u00edz\u00ed r\u016fzn\u00e9 v\u00fdkonnostn\u00ed funkce.<\/p>\n\n\n\n<p>D\u016fle\u017eit\u00e9 je zajistit co nejv\u011bt\u0161\u00ed po\u010det server\u016f v co nejv\u011bt\u0161\u00edm po\u010dtu zem\u00ed, aby se \u00fadaje o p\u0159ipojen\u00ed nezaznamen\u00e1valy, co nejv\u00edce soub\u011b\u017en\u00fdch p\u0159ipojen\u00ed, podporu WireGuard (pro vy\u0161\u0161\u00ed rychlost zpracov\u00e1n\u00ed), SmartDNS (pro umo\u017en\u011bn\u00ed streamov\u00e1n\u00ed na koncov\u00fdch za\u0159\u00edzen\u00edch s podporou chytr\u00fdch technologi\u00ed), split tunnelling (paraleln\u011b se navazuje jak \u0161ifrovan\u00e9 p\u0159ipojen\u00ed VPN, tak p\u0159\u00edm\u00e9 ne\u0161ifrovan\u00e9 p\u0159ipojen\u00ed k internetu, nap\u0159. k m\u00edstn\u00ed tisk\u00e1rn\u011b) a v neposledn\u00ed \u0159ad\u011b multi-hop (metoda kask\u00e1dov\u00e9ho p\u0159ipojen\u00ed VPN, kdy se nap\u0159. po ka\u017ed\u00e9m p\u0159enosu datov\u00e9ho paketu nav\u00e1\u017ee nov\u00e9 p\u0159ipojen\u00ed k m\u00edstn\u00ed tisk\u00e1rn\u011b).(metoda kask\u00e1dov\u00fdch spojen\u00ed VPN, p\u0159i n\u00ed\u017e nap\u0159\u00edklad po ka\u017ed\u00e9m p\u0159enosu datov\u00e9ho paketu na n\u00e1sleduj\u00edc\u00ed server nov\u011b vytvo\u0159en\u00e9ho A znovu za\u0161ifrovan\u00e9ho spojen\u00ed VPN nelze s p\u0159im\u011b\u0159en\u00fdm \u00fasil\u00edm a rychlost\u00ed ur\u010dit ani p\u0159\u00edchoz\u00ed, ani odchoz\u00ed server). Poskytovatel by v\u0161ak m\u011bl pe\u010dliv\u011b prov\u011b\u0159it technologii s v\u00edce servery, pokud jde o aspekt obnoven\u00e9ho \u0161ifrov\u00e1n\u00ed, proto\u017ee n\u011bkter\u00e9 z nich m\u011bn\u00ed server, ale neobnovuj\u00ed \u0161ifrov\u00e1n\u00ed.<\/p>\n\n\n\n<p>Mo\u017en\u00e1 rozhoduj\u00edc\u00ed bod z hlediska \u00fapln\u00e9 anonymity: Jen velmi m\u00e1lo poskytovatel\u016f umo\u017e\u0148uje vyu\u017e\u00edvat sv\u00e9 slu\u017eby bez registrace nebo jak\u00e9hokoli prok\u00e1z\u00e1n\u00ed toto\u017enosti, v\u010detn\u011b anonymn\u00ed platby, jako nap\u0159. \u0161v\u00e9dsk\u00e1 spole\u010dnost <a href=\"https:\/\/mullvad.net\/de\" target=\"_blank\" rel=\"noreferrer noopener\">Mullvad VPN<\/a>.<\/p>\n\n\n\n<p>Nejdra\u017e\u0161\u00ed poskytovatel nemus\u00ed b\u00fdt nutn\u011b ten nejlep\u0161\u00ed. Kdo v\u0161ak udr\u017euje tis\u00edce server\u016f v des\u00edtk\u00e1ch zem\u00ed s p\u0159ijatelnou rychlost\u00ed, bezpe\u010dnost\u00ed a anonymitou, mus\u00ed si tak\u00e9 \u00fa\u010dtovat odpov\u00eddaj\u00edc\u00ed vy\u0161\u0161\u00ed poplatky.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Software_VPN_Provider_%E2%80%93_eine_Auswahl\"><\/span>Poskytovatel\u00e9 softwarov\u00fdch VPN - v\u00fdb\u011br<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>Odborn\u00e9 \u010dasopisy up\u0159ednost\u0148uj\u00ed dva poskytovatele VPN. <a href=\"https:\/\/nordvpn.com\/de\/nord-site\/\" target=\"_blank\" rel=\"noreferrer noopener\">NordVPN<\/a> se s\u00eddlem v Panam\u011b a <a href=\"https:\/\/www.cyberghostvpn.com\/de_DE\/\" target=\"_blank\" rel=\"noreferrer noopener\">CyberGhost<\/a> v Rumunsku, jeho\u017e serverov\u00e1 s\u00ed\u0165 je relativn\u011b l\u00e9pe rozvinut\u00e1, ale jej\u00ed\u017e datov\u00e1 propustnost a schopnost streamov\u00e1n\u00ed jsou m\u00e9n\u011b dobr\u00e9. Kdo pot\u0159ebuje dedikovanou IP adresu nebo je fanou\u0161kem her, p\u0159ijde si zde na sv\u00e9.<\/p>\n\n\n\n<p>Bezplatn\u00e9 a z hlediska v\u00fdkonu velmi solidn\u00ed \u0159e\u0161en\u00ed nab\u00edz\u00ed spole\u010dnost <a href=\"https:\/\/hide.me\" target=\"_blank\" rel=\"noopener\">hide.me VPN<\/a> se s\u00eddlem v Malajsii a \u0161esti voln\u011b dostupn\u00fdmi servery, nap\u0159. ve Finsku, s rychlost\u00ed stahov\u00e1n\u00ed 50 MB\/s, rozd\u011blen\u00fdm tunelov\u00e1n\u00edm a plnou podporou IPv6.<\/p>\n\n\n\n<p>V souvislosti s <em>Sm\u011brova\u010d Teltonika RUTX50<\/em> v\u00fdsledky s <em>CloudConnexa<\/em> bezplatnou mo\u017enost pou\u017e\u00edvat a\u017e t\u0159i p\u0159ipojen\u00ed VPN. V\u00edce o tom v samostatn\u00e9m \u010dl\u00e1nku <a href=\"https:\/\/csiag.eu\/cs\/vpn-teltonika-rutx50\/\" data-type=\"post\" data-id=\"6123\">P\u0159\u00edsp\u011bvek<\/a>.<\/p>","protected":false},"excerpt":{"rendered":"<p><span class=\"span-reading-time rt-reading-time\" style=\"display: block;\"><span class=\"rt-label rt-prefix\">Doba \u010dten\u00ed<\/span> <span class=\"rt-time\"> 3<\/span> <span class=\"rt-label rt-postfix\">minuty<\/span><\/span>VPN je zkratka pro virtu\u00e1ln\u00ed priv\u00e1tn\u00ed s\u00ed\u0165. Virtu\u00e1ln\u00ed proto, \u017ee se jedn\u00e1 o s\u00ed\u0165, kter\u00e1 vytv\u00e1\u0159\u00ed spojen\u00ed mezi dv\u011bma body prost\u0159ednictv\u00edm r\u016fzn\u00fdch server\u016f (VPN br\u00e1ny) v extern\u00ed s\u00edti. Nap\u0159\u00edklad dom\u00e1c\u00ed kancel\u00e1\u0159 (s\u00ed\u0165 A) p\u0159es internet (s\u00ed\u0165 B) se s\u00edt\u00ed u zam\u011bstnavatele (s\u00ed\u0165 C). Z\u00e1klady \u0160ifrov\u00e1n\u00ed dat a p\u0159\u00edstupov\u00e1 opr\u00e1vn\u011bn\u00ed jsou obvykle definov\u00e1na p\u0159\u00edslu\u0161n\u00fdm...&nbsp;<a href=\"https:\/\/csiag.eu\/cs\/blog\/2023\/12\/09\/vpn\/\" rel=\"bookmark\">\u010c\u00edst d\u00e1le \"<span class=\"screen-reader-text\">VPN<\/span><\/a><\/p>","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_lmt_disableupdate":"","_lmt_disable":"","neve_meta_sidebar":"","neve_meta_container":"","neve_meta_enable_content_width":"","neve_meta_content_width":0,"neve_meta_title_alignment":"","neve_meta_author_avatar":"","neve_post_elements_order":"","neve_meta_disable_header":"","neve_meta_disable_footer":"","neve_meta_disable_title":"","footnotes":""},"categories":[2039,364,2553,2714],"tags":[2725,2721,2731,914,2732,955,2726,2730,2068,2724,2716,1182,574,2043,2723,2727,954,2728,2729,2450,2722,2715,2718,2719,2720,2717],"class_list":["post-5830","post","type-post","status-publish","format-standard","hentry","category-internet","category-internet-grundlagen-fuer-dummies","category-netzwerk-technik","category-vpn","tag-cyberghost","tag-datenverschluesselung","tag-dedizierte-ip","tag-firewall","tag-gaming","tag-hardware","tag-mullvad-vpn","tag-multi-hop","tag-netzwerk","tag-nordvpn","tag-paket","tag-provider","tag-router","tag-server","tag-shellfire","tag-smartdns","tag-software","tag-split-tunneling","tag-tunneling","tag-verbindung","tag-verschluesselung","tag-vpn","tag-vpn-paket","tag-vpn-provider","tag-vpn-server","tag-vpn-verbindung"],"modified_by":"Achim Goerner","_links":{"self":[{"href":"https:\/\/csiag.eu\/cs\/wp-json\/wp\/v2\/posts\/5830","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/csiag.eu\/cs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/csiag.eu\/cs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/csiag.eu\/cs\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/csiag.eu\/cs\/wp-json\/wp\/v2\/comments?post=5830"}],"version-history":[{"count":0,"href":"https:\/\/csiag.eu\/cs\/wp-json\/wp\/v2\/posts\/5830\/revisions"}],"wp:attachment":[{"href":"https:\/\/csiag.eu\/cs\/wp-json\/wp\/v2\/media?parent=5830"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/csiag.eu\/cs\/wp-json\/wp\/v2\/categories?post=5830"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/csiag.eu\/cs\/wp-json\/wp\/v2\/tags?post=5830"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}