Examples request - tinc witn tun/utun mode=router
Graeme Tattersall
wildph at wildph.net
Thu Nov 12 19:15:00 CET 2020
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Yeah,
All I can see is the tinc commit where tinc gained support for the
built-in utun device; but there doesn't seem to be any end-to-end
documentation on how to use it.
This whole thing is necessary because apple are removing support for
loadable extensions and particularly tap devices in the next OSX, Bug
Sur 10.11.
But it looks like ifconfig tun interfaces on OSX/BSD need a local and
remote IP address? I'm confused. Surely we don't know the remote
address, because it could be any node on the tinc network depending on
which node I need to talk to -- and what if i need to exchange with
more than one node at the same time? All very confusing - would the
tun interface need to be constantly reconfigured over and over again
endlessly?
https://git.habd.as/comfusion/tinc/commit/d7f6737
GT
On 12/11/2020 17:47, Erich Eckner wrote:
> On Thu, 12 Nov 2020, Graeme Tattersall wrote:
>
> > Does anyone have a set of config files handy, using tinc in routed/tun
> > mode (preferably DeviceType=utun)
>
> I have 'DeviceType = tun', does that qualify? (running on linux)
>
> > I'm particularly interested to see what the tinc-up and tinc-down files
> > should look like when the vpn is not using tap mode.
>
> tinc-up:
> #!/bin/sh
> ip link set $INTERFACE up
> ip addr add 10.0.1.1/24 dev $INTERFACE
>
> tinc-down:
> #!/bin/sh
> ip addr del 10.0.1.1/24 dev $INTERFACE
> ip link set $INTERFACE down
>
>
> > I have this, from my tap (switch mode tinc) , but it doesn't work for
> > tun devices.
>
> > ifconfig $INTERFACE inet 10.10.101.2/24 up
>
> > If I run my tincd in osx in debug mode, the vpn startup fails:
>
> > /dev/tun0 is a OS X utun device
> > ifconfig: ioctl (SIOCAIFADDR): Destination address required
> > Script tinc-up exited with non-zero status 1
>
> On first glance, your ifconfig command looks ok, so maybe it's a
difference between utun and tun.
>
>
>
> > GT
>
> regards,
> Erich
>
>
> _______________________________________________
> tinc mailing list
> tinc at tinc-vpn.org
> https://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc
-----BEGIN PGP SIGNATURE-----
iQEzBAEBCgAdFiEE5/ojk0/H13Dre7lpKoGJJSwxlJ0FAl+te6EACgkQKoGJJSwx
lJ0+uQgAw2BQPstbzVvLIxvrrPRS3aL2LJcJ2BqRmqHpMLtReyfPNqHvYQkoeHMJ
1DJinTLAMT4tMzy94n85ij021JY3A04uwSEfywqxMUMFqENo/yLc2EC1Ae38bbIV
xhMLW3FxDPYiOs199cHKuqq33ujFDPgu8REQvpIGX6SYL9/LZk6dqFZYy+veH9x4
0cTuqFI37X39JE3aVr4XmWhU5hRPbzfREIMlV+Uwn/wwZFZwuQuZj1Bxz8sogcAW
MxMGnCxl+tkugo84chbjM7Jw7H/O/iERaTcRzWpGPPKfvdQJxFntmREFMDg1wd3i
jrPVBHxy2lVxj1DR77ozuD/3e5l2Fg==
=7I1z
-----END PGP SIGNATURE-----
More information about the tinc
mailing list