Simple Class A VPN Guide - Problems
Donald Pearson
donaldwhpearson at gmail.com
Thu May 2 17:48:59 CEST 2013
As an example, one of the setups I ran was 2 sites, reach with a local /24.
Tinc subnets were configured on each side with a /25 inside of the local
/24. Any devices that you would wish to participate in the VPN, you'd
provision with an IP inside of the /25. Otherwise provision it inside of
the /24. The devices themselves would still use a /24 mask but the VPN
would only expose half of that range due to it's /25 configuration.
In that way for any one site, all local devices could communicate with all
other local devices, and 1/2 of the IP range of the remote site through the
VPN.
On Thu, May 2, 2013 at 11:04 AM, Guus Sliepen <guus at tinc-vpn.org> wrote:
> On Fri, May 03, 2013 at 12:51:34AM +1000, Andrew Armstrong wrote:
>
> > Thanks Guus, I will try this shortly. Can you elaborate on when an actual
> > subnet of (say) 10.0.0.0/8 would ever be used (or things other than a
> /32
> > address).
>
> You typically use things other than a /32 when you have a LAN connected to
> a
> node running tinc, and you want to make the whole LAN part of the VPN.
>
> See for example the configuration described in the manual:
>
> http://tinc-vpn.org/documentation/tinc_4.html#Example-configuration
>
> --
> Met vriendelijke groet / with kind regards,
> Guus Sliepen <guus at tinc-vpn.org>
>
> _______________________________________________
> tinc mailing list
> tinc at tinc-vpn.org
> http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.tinc-vpn.org/pipermail/tinc/attachments/20130502/b1e6545a/attachment.html>
More information about the tinc
mailing list