Difference between revisions of "Tinc"
From Tmplab
Samneurohack (talk | contribs) (→Yet Another Help For Basic tinc-vpn setup) |
Samneurohack (talk | contribs) (→Yet Another Help For Basic tinc-vpn setup) |
||
| Line 1: | Line 1: | ||
| − | = | + | = Linux style Basic tinc-vpn setup = |
| − | == Configuration Directory Structure == | + | == All Nodes Configuration Directory Structure == |
/etc/tinc/ | /etc/tinc/ | ||
| Line 35: | Line 35: | ||
#!/bin/bash | #!/bin/bash | ||
ifconfig $INTERFACE down | ifconfig $INTERFACE down | ||
| + | |||
| + | == Keygeneration == | ||
| + | |||
| + | * to be run for each client | ||
| + | * tincd -n networkname -K4096 | ||
| + | * private key goes to /etc/tinc/networkname | ||
| + | * public key goes to /etc/tinc/networkname/hosts | ||
| + | * add the first two lines as shown below according to client or server | ||
== hosts/client1 == | == hosts/client1 == | ||
Revision as of 10:11, 25 May 2016
Contents
Linux style Basic tinc-vpn setup
All Nodes Configuration Directory Structure
/etc/tinc/
nets.boot
networkname/
tinc.conf
tinc-up
tinc-down
hosts/
client1
client2
...
tincserver
nets.boot
networkname
tinc.conf for client1
Name=client1 Device=/dev/net/tun ConnectTo=TincServer AddressFamily = ipv4
tinc-up for client1
#!/bin/bash ifconfig $INTERFACE 192.168.22.2 netmask 255.255.255.0
tinc-down for client1
#!/bin/bash ifconfig $INTERFACE down
Keygeneration
- to be run for each client
- tincd -n networkname -K4096
- private key goes to /etc/tinc/networkname
- public key goes to /etc/tinc/networkname/hosts
- add the first two lines as shown below according to client or server
hosts/client1
Name=client1 Subnet=192.168.22.2 -----BEGIN RSA PUBLIC KEY----- .... -----END RSA PUBLIC KEY-----
hosts/client2
Name=client2 Subnet=192.168.22.3 -----BEGIN RSA PUBLIC KEY----- .... -----END RSA PUBLIC KEY-----
hosts/tincserver
Subnet=192.168.22.1 Address=SERVERPUBLICIP
