{"id":1305,"date":"2026-02-23T16:08:42","date_gmt":"2026-02-23T13:08:42","guid":{"rendered":"https:\/\/ru.tophosts.net\/articles\/?post_type=docs&#038;p=1305"},"modified":"2026-02-26T16:20:17","modified_gmt":"2026-02-26T13:20:17","password":"","slug":"site-to-site-vpn","status":"publish","type":"docs","link":"https:\/\/ru.tophosts.net\/articles\/glossary\/docs\/site-to-site-vpn\/","title":{"rendered":"Site-to-Site VPN (\u0421\u043e\u0435\u0434\u0438\u043d\u0435\u043d\u0438\u0435 \u00ab\u0441\u0430\u0439\u0442-\u0441\u0430\u0439\u0442\u00bb)"},"content":{"rendered":"\n<p><strong>Site-to-Site VPN<\/strong>\u00a0\u2014 \u0437\u0430\u0449\u0438\u0449\u0451\u043d\u043d\u043e\u0435 \u0441\u043e\u0435\u0434\u0438\u043d\u0435\u043d\u0438\u0435 \u043c\u0435\u0436\u0434\u0443 \u0434\u0432\u0443\u043c\u044f \u043a\u043e\u0440\u043f\u043e\u0440\u0430\u0442\u0438\u0432\u043d\u044b\u043c\u0438 \u0441\u0435\u0442\u044f\u043c\u0438 (\u043e\u0444\u0438\u0441\u0430\u043c\u0438, \u0434\u0430\u0442\u0430-\u0446\u0435\u043d\u0442\u0440\u0430\u043c\u0438, \u0444\u0438\u043b\u0438\u0430\u043b\u0430\u043c\u0438), \u0441\u043e\u0437\u0434\u0430\u044e\u0449\u0435\u0435 \u0435\u0434\u0438\u043d\u0443\u044e \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u0443\u044e LAN \u043f\u043e\u0432\u0435\u0440\u0445 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0430. \u041f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0441\u043e\u0442\u0440\u0443\u0434\u043d\u0438\u043a\u0430\u043c \u0438\u0437 \u0440\u0430\u0437\u043d\u044b\u0445 \u043b\u043e\u043a\u0430\u0446\u0438\u0439 \u0440\u0430\u0431\u043e\u0442\u0430\u0442\u044c \u043a\u0430\u043a \u0432 \u043e\u0434\u043d\u043e\u0439 \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u043e\u0439 \u0441\u0435\u0442\u0438, \u043e\u0431\u043c\u0435\u043d\u0438\u0432\u0430\u0442\u044c\u0441\u044f \u0444\u0430\u0439\u043b\u0430\u043c\u0438, \u0442\u0430\u043a \u0438 \u0438\u043c\u0435\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u0438\u043c \u0441\u0435\u0440\u0432\u0435\u0440\u0430\u043c \u0438 \u043f\u0440\u0438\u043d\u0442\u0435\u0440\u0430\u043c.<\/p>\n\n\n\n<p><strong>\u041a\u043b\u044e\u0447\u0435\u0432\u044b\u0435 \u043e\u0441\u043e\u0431\u0435\u043d\u043d\u043e\u0441\u0442\u0438 Site-to-Site VPN<\/strong><\/p>\n\n\n\n<p>\u0422\u0438\u043f\u044b \u0442\u0443\u043d\u043d\u0435\u043b\u0435\u0439:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>IPse<strong>c<\/strong>\u00a0\u2014 \u0441\u0442\u0430\u043d\u0434\u0430\u0440\u0442 \u0434\u0435-\u0444\u0430\u043a\u0442\u043e (IKEv1\/v2, ESP\/AH)<\/li>\n\n\n\n<li>WireGuard\u00a0\u2014 \u0441\u043e\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u0430\u044f \u0430\u043b\u044c\u0442\u0435\u0440\u043d\u0430\u0442\u0438\u0432\u0430 \u0434\u043b\u044f \u0431\u044b\u0441\u0442\u0440\u043e\u0433\u043e \u0441\u043e\u0435\u0434\u0438\u043d\u0435\u043d\u0438\u044f<\/li>\n\n\n\n<li><a href=\"https:\/\/ru.tophosts.net\/articles\/glossary\/docs\/openvpn\/\" target=\"_blank\" rel=\"noreferrer noopener\">OpenVPN<\/a>\u00a0\u2014 \u0443\u043d\u0438\u0432\u0435\u0440\u0441\u0430\u043b\u044c\u043d\u044b\u0439, \u0441 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u043e\u0439 TAP (L2)<\/li>\n\n\n\n<li>GRE over IPsec\u00a0\u2014 \u0434\u043b\u044f \u043c\u0430\u0440\u0448\u0440\u0443\u0442\u0438\u0437\u0430\u0446\u0438\u0438 \u0441\u043b\u043e\u0436\u043d\u044b\u0445 \u043f\u0440\u043e\u0442\u043e\u043a\u043e\u043b\u043e\u0432<\/li>\n<\/ul>\n\n\n\n<p>\u0410\u0440\u0445\u0438\u0442\u0435\u043a\u0442\u0443\u0440\u0430:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code><code>\u041e\u0444\u0438\u0441 A (192.168.1.0\/24) \u2190 &#91;VPN-\u0442\u0443\u043d\u043d\u0435\u043b\u044c \u0447\u0435\u0440\u0435\u0437 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442] \u2192 \u041e\u0444\u0438\u0441 B (192.168.2.0\/24)\nFirewall\/Router \u2194 VPN Gateway \u2194 Firewall\/Router\n<\/code><\/code><\/pre>\n\n\n\n<p><strong>\u041d\u0430\u0441\u0442\u0440\u043e\u0439\u043a\u0430 Site-to-Site VPN<\/strong><\/p>\n\n\n\n<p>IPsec IKEv2 (\u043d\u0430 MikroTik\/PFSense):<\/p>\n\n\n\n<p>\u0421\u0442\u043e\u0440\u043e\u043d\u0430 A (192.168.1.1):<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code><code>\/ip ipsec peer add address=192.168.2.1\/32 local-address=192.168.1.1\n\/ip ipsec policy add src-address=192.168.1.0\/24 dst-address=192.168.2.0\/24\n\/ip route add dst-address=192.168.2.0\/24 gateway=ipsec-peer\n<\/code><\/code><\/pre>\n\n\n\n<p>\u0421\u0442\u043e\u0440\u043e\u043d\u0430 B (192.168.2.1):<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code><code>\/ip ipsec peer add address=192.168.1.1\/32 local-address=192.168.2.1\n\/ip ipsec policy add src-address=192.168.2.0\/24 dst-address=192.168.1.0\/24\n<\/code><\/code><\/pre>\n\n\n\n<p>WireGuard Site-to-Site:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code><code># \u041e\u0444\u0438\u0441 A (wg0.conf)\n&#91;Peer]\nPublicKey = &lt;\u041e\u0444\u0438\u0441 B \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u044b\u0439 \u043a\u043b\u044e\u0447>\nAllowedIPs = 192.168.2.0\/24\nEndpoint = 203.0.113.2:51820\n\n# \u041e\u0444\u0438\u0441 B (wg0.conf) \nAllowedIPs = 192.168.1.0\/24\nEndpoint = 203.0.113.1:51820\n<\/code><\/code><\/pre>\n\n\n\n<p><strong>\u041f\u0440\u0435\u0438\u043c\u0443\u0449\u0435\u0441\u0442\u0432\u0430 Site-to-Site VPN<\/strong><\/p>\n\n\n\n<figure class=\"wp-block-table is-style-stripes has-small-font-size\"><table class=\"has-fixed-layout\"><thead><tr><th><strong>\u041f\u043b\u044e\u0441\u044b<\/strong><\/th><th><strong>\u041c\u0438\u043d\u0443\u0441\u044b<\/strong><\/th><\/tr><\/thead><tbody><tr><td>\u0415\u0434\u0438\u043d\u0430\u044f \u0441\u0435\u0442\u044c \u043e\u0444\u0438\u0441\u043e\u0432<\/td><td>\u0421\u0442\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0442\u043e\u043f\u043e\u043b\u043e\u0433\u0438\u044f<\/td><\/tr><tr><td>\u0414\u043e\u0441\u0442\u0443\u043f \u043a \u0440\u0435\u0441\u0443\u0440\u0441\u0430\u043c<\/td><td>\u0417\u0430\u0432\u0438\u0441\u0438\u043c\u043e\u0441\u0442\u044c \u043e\u0442 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0430<\/td><\/tr><tr><td>\u0428\u0438\u0444\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0442\u0440\u0430\u0444\u0438\u043a\u0430<\/td><td>\u0421\u043b\u043e\u0436\u043d\u0430\u044f \u043e\u0442\u043b\u0430\u0434\u043a\u0430<\/td><\/tr><tr><td>\u042d\u043a\u043e\u043d\u043e\u043c\u0438\u044f vs MPLS<\/td><td><\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<p><strong>\u0421\u0440\u0430\u0432\u043d\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0442\u043e\u043a\u043e\u043b\u043e\u0432<\/strong><\/p>\n\n\n\n<figure class=\"wp-block-table is-style-stripes has-small-font-size\"><table class=\"has-fixed-layout\"><thead><tr><th><strong>IPsec<\/strong><\/th><th><strong>WireGuard<\/strong><\/th><th><strong>OpenVPN<\/strong><\/th><\/tr><\/thead><tbody><tr><td>\u041a\u043e\u0440\u043f\u043e\u0440\u0430\u0442\u0438\u0432\u043d\u044b\u0439 \u0441\u0442\u0430\u043d\u0434\u0430\u0440\u0442<\/td><td>\u041c\u0430\u043a\u0441\u0438\u043c\u0430\u043b\u044c\u043d\u0430\u044f \u0441\u043a\u043e\u0440\u043e\u0441\u0442\u044c<\/td><td>TAP\/L2 \u0440\u0435\u0436\u0438\u043c<\/td><\/tr><tr><td>IKEv2 \u0440\u0435\u043a\u043e\u043d\u043d\u0435\u043a\u0442<\/td><td>4000 \u0441\u0442\u0440\u043e\u043a \u043a\u043e\u0434\u0430<\/td><td>TCP \u0434\u043b\u044f DPI<\/td><\/tr><tr><td>Hardware \u0443\u0441\u043a\u043e\u0440\u0435\u043d\u0438\u0435<\/td><td>\u041f\u0440\u043e\u0441\u0442\u0430\u044f \u043d\u0430\u0441\u0442\u0440\u043e\u0439\u043a\u0430<\/td><td>\u0423\u043d\u0438\u0432\u0435\u0440\u0441\u0430\u043b\u044c\u043d\u043e\u0441\u0442\u044c<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<p><strong>\u041a\u043e\u0433\u0434\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c Site-to-Site VPN<\/strong><\/p>\n\n\n\n<p>\u041e\u0431\u044f\u0437\u0430\u0442\u0435\u043b\u0435\u043d \u0434\u043b\u044f:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u0444\u0438\u043b\u0438\u0430\u043b\u044b \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438\u00a0(\u041c\u043e\u0441\u043a\u0432\u0430+\u0421\u041f\u0431+\u0415\u043a\u0430\u0442\u0435\u0440\u0438\u043d\u0431\u0443\u0440\u0433);<\/li>\n\n\n\n<li>DevOps\u00a0(CI\/CD \u043c\u0435\u0436\u0434\u0443 \u0434\u0430\u0442\u0430-\u0446\u0435\u043d\u0442\u0440\u0430\u043c\u0438);<\/li>\n\n\n\n<li>\u0443\u0434\u0430\u043b\u0451\u043d\u043d\u044b\u0435 \u043e\u0444\u0438\u0441\u044b\u00a0(\u0434\u043e\u0441\u0442\u0443\u043f \u043a 1\u0421, CRM, \u0444\u0430\u0439\u043b\u043e\u0432\u044b\u043c \u0441\u0435\u0440\u0432\u0435\u0440\u0430\u043c).<\/li>\n<\/ul>\n\n\n\n<p><strong>\u0420\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438:<\/strong>\u00a0\u0414\u043b\u044f 2\u20135 \u043e\u0444\u0438\u0441\u043e\u0432 \u2014 <a href=\"https:\/\/ru.tophosts.net\/articles\/glossary\/docs\/wireguard\/\" target=\"_blank\" rel=\"noreferrer noopener\">WireGuard<\/a> (\u0441\u043a\u043e\u0440\u043e\u0441\u0442\u044c+\u043f\u0440\u043e\u0441\u0442\u043e\u0442\u0430). \u041a\u043e\u0440\u043f\u043e\u0440\u0430\u0442\u0438\u0432\u043d\u044b\u0439 \u0441\u0442\u0430\u043d\u0434\u0430\u0440\u0442 \u2014 IPsec IKEv2 \u043d\u0430 PFSense\/Ubiquiti EdgeRouter. VPS \u043d\u0435 \u043f\u043e\u0434\u0445\u043e\u0434\u0438\u0442 \u2014 \u043d\u0443\u0436\u043d\u044b \u0441\u0442\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u044b\u0435 IP \u0438 \u043c\u0430\u0440\u0448\u0440\u0443\u0442\u0438\u0437\u0430\u0442\u043e\u0440\u044b \u0441 <a href=\"https:\/\/ru.tophosts.net\/rating-vps-for-vpn\" target=\"_blank\" rel=\"noreferrer noopener\">VPN-\u043a\u043b\u0438\u0435\u043d\u0442\u043e\u043c.<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Site-to-Site VPN\u00a0\u2014 \u0437\u0430\u0449\u0438\u0449\u0451\u043d\u043d\u043e\u0435 \u0441\u043e\u0435\u0434\u0438\u043d\u0435\u043d\u0438\u0435 \u043c\u0435\u0436\u0434\u0443 \u0434\u0432\u0443\u043c\u044f \u043a\u043e\u0440\u043f\u043e\u0440\u0430\u0442\u0438\u0432\u043d\u044b\u043c\u0438 \u0441\u0435\u0442\u044f\u043c\u0438 (\u043e\u0444\u0438\u0441\u0430\u043c\u0438, \u0434\u0430\u0442\u0430-\u0446\u0435\u043d\u0442\u0440\u0430\u043c\u0438, \u0444\u0438\u043b\u0438\u0430\u043b\u0430\u043c\u0438), \u0441\u043e\u0437\u0434\u0430\u044e\u0449\u0435\u0435 \u0435\u0434\u0438\u043d\u0443\u044e \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u0443\u044e LAN&#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"doc_category":[618],"doc_tag":[],"class_list":["post-1305","docs","type-docs","status-publish","hentry","doc_category-docs"],"year_month":"2026-04","word_count":108,"total_views":0,"reactions":{"happy":0,"normal":0,"sad":0},"author_info":{"name":"TopHosts","author_nicename":"tophosts","author_url":"https:\/\/ru.tophosts.net\/articles\/author\/tophosts\/"},"doc_category_info":[{"term_name":"\u0422\u0435\u0440\u043c\u0438\u043d\u044b","term_url":"https:\/\/ru.tophosts.net\/articles\/glossary\/docs\/"}],"doc_tag_info":[],"_links":{"self":[{"href":"https:\/\/ru.tophosts.net\/articles\/wp-json\/wp\/v2\/docs\/1305","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ru.tophosts.net\/articles\/wp-json\/wp\/v2\/docs"}],"about":[{"href":"https:\/\/ru.tophosts.net\/articles\/wp-json\/wp\/v2\/types\/docs"}],"author":[{"embeddable":true,"href":"https:\/\/ru.tophosts.net\/articles\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/ru.tophosts.net\/articles\/wp-json\/wp\/v2\/comments?post=1305"}],"version-history":[{"count":0,"href":"https:\/\/ru.tophosts.net\/articles\/wp-json\/wp\/v2\/docs\/1305\/revisions"}],"wp:attachment":[{"href":"https:\/\/ru.tophosts.net\/articles\/wp-json\/wp\/v2\/media?parent=1305"}],"wp:term":[{"taxonomy":"doc_category","embeddable":true,"href":"https:\/\/ru.tophosts.net\/articles\/wp-json\/wp\/v2\/doc_category?post=1305"},{"taxonomy":"doc_tag","embeddable":true,"href":"https:\/\/ru.tophosts.net\/articles\/wp-json\/wp\/v2\/doc_tag?post=1305"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}