When a node connects to the VPN, the server to which the node connects initiates a synchronization procedure. Here are the steps:
- Retrieval of version information from the remote node.
- Verification if the node is authorized to connect to the VPN (see Disable access ). If not, the node is disconnected, and the node's public key is removed from the server.
- Checking if data synchronization is enabled (see Sync. disable ). If not, the node remains connected, but no synchronization is performed.
- The server requests the remote node to generate a hash with all nodes/public keys that the node has access to.
- The server generates a hash of all nodes/public keys that the node has access to, based on the topology.
- If the hashes are different, the server sends the list of all nodes the node has access to and restarts the remote VPN service.
The server responsible for this node will send the command to restart the remote VPN service to force a new synchronization.
If Synchronization is disable, nothing happend.
All servers will remove the public key of the node. Consequently, the affected node will no longer be able to connect to the VPN.