![]() The ConnectTo statements connect to both of the other nodes. This may be counterintuitive, but it is what allows the tinc daemon to know which broadcast packets are for this instance.Īlso note that while we add the routes for all the other networks in the tinc-up script, we add only the subnets for this instance in the host file. Note that while in the tinc-up script we specify a /29 mask (entire broadcast domain) the host file contains a /32 mask. ![]() The ip route statements tells the local gateway to route traffic bound for the other two campuses through the tinc VPN interface.Ĭreate the site specific configuration fileĮach site has a specific configuration file that is shared will all other sites. # route TO Carbondale (leave commented out on Carbondale # route TO Boulder (leave commented out on Boulder # route TO Aspen (leave commented out on Aspen On each router, create a /etc/tinc/mesh/tinc-up script. This example is for Aspen:Ĭhange the Name to be Boulder and Carbondale on the other servers. On each router, create a /etc/tinc/mesh/nf file. Mkdir -p /etc/tinc/mesh/hosts Tell the tinc daemon which network(s) to loadĮcho NETWORK: mesh > /etc/conf.d/works Install And Configure Per Server Settings A network interface will be created with the network name. Install And Configure Common Tinc SettingsĮcho "tun" > /etc/modules Create the directory tree For Tinc Configuration We need to create a name for our VPN. The Tinc VPN itself will use the dedicated network 192.168.0.0/29. Alpine Linux is used as the firwall/router/gateway at each office, and tinc will be installed on the gateway.ġ92.160.110.0/24 - CARBONDALEīOULDER -/ 192.168.130.0/24 has three offices: Aspen, Boulder, and Carbondale. Our example network topology looks like the following chart. These instructions do not create an extended bridged "ethernet LAN" - it creates a set of routed networks. While it is possible to set up separate tinc daemons with separate vpn names, we will "trunk" all the traffic over a single tinc vpn. These instructions will create a routed mesh network with multiple protected networks behind each node. Make sure no other pages link here and check the page's history before deleting. Īlthough this may be useful to a small percent of users this isnt really directly related to Alpine Linux and should be in the tinc documentation
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |