<p dir="ltr">I use 'sslh' demultiplexer in these types of scenarios.</p>
<p dir="ltr">Reconfigure httpd to listen on localhost:80, then configure sslh to listen on <a href="http://10.1.1.10:80">10.1.1.10:80</a> and point http traffic to localhost:80, and to point tinc traffic to whatever port tinc is bound.</p>
<div class="gmail_quote">On Apr 24, 2015 2:36 AM, "Guus Sliepen" <<a href="mailto:guus@tinc-vpn.org">guus@tinc-vpn.org</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">On Wed, Apr 15, 2015 at 10:28:36PM +0900, Benda Xu wrote:<br>
<br>
> I am behind a firewall which only let UDP 80 go through. In order to<br>
> connect to an outside public node by UDP, I can set<br>
><br>
> ...<br>
> Port = 80<br>
> ...<br>
><br>
> However, an httpd is running on the public node, occupying TCP 80.<br>
><br>
> How can I configure tinc to bind on TCP 8080 but listen to UDP 80?<br>
><br>
> Redirecting UDP 80 to UDP 8080 on the public node is one method. Is<br>
> there a more elegant way to achieve this?<br>
<br>
At the moment, tinc only wants to bind to both TCP and UDP<br>
simultaneously, so you cannot tell it to bind to port 80 for UDP only.<br>
Redirecting with firewall rules is the easiest option in this scenario.<br>
<br>
--<br>
Met vriendelijke groet / with kind regards,<br>
Guus Sliepen <<a href="mailto:guus@tinc-vpn.org">guus@tinc-vpn.org</a>><br>
<br>_______________________________________________<br>
tinc mailing list<br>
<a href="mailto:tinc@tinc-vpn.org">tinc@tinc-vpn.org</a><br>
<a href="http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc" target="_blank">http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc</a><br>
<br></blockquote></div>