How to recognize tinc TCP connection with iptables

Gian Piero Carrubba gpiero at rm-rf.it
Sat Aug 31 20:43:33 CEST 2013


* [Sat, Aug 31, 2013 at 10:27:55AM -0700] Nikolaus Rath:
>What I want to do is be able to talk to a tinc server on port 443
>(https) using just TCP, so that the client has the best possible chance
>of making it through any overly restrictive firewalls imposed by some
>WiFi hotspots.
>
>However, I still want to be able to serve regular https on the same
>server. Thus the idea of adding some iptables rule on the server that
>identify tinc packets and locally redirect those to the regular tinc
>port (while everything else reaches the webserver as usual).

sslh[0] added support for tinc some time ago. You could give it a try.

Ciao,
Gian Piero.

[0] http://www.rutschle.net/tech/sslh.shtml


More information about the tinc mailing list