\input texinfo @c -*-texinfo-*-
+@c $Id: tinc.texi,v 1.8.4.7 2000/11/09 21:29:58 zarq Exp $
@c %**start of header
@setfilename tinc.info
@settitle tinc Manual
<itimmermans@@bigfoot.com>, Guus Sliepen <guus@@sliepen.warande.net> and
Wessel Dankers <wsl@@nl.linux.org>.
+$Id: tinc.texi,v 1.8.4.7 2000/11/09 21:29:58 zarq Exp $
Permission is granted to make and distribute verbatim copies of this
manual provided the copyright notice and this permission notice are
<itimmermans@@bigfoot.com>, Guus Sliepen <guus@@sliepen.warande.net> and
Wessel Dankers <wsl@@nl.linux.org>.
+$Id: tinc.texi,v 1.8.4.7 2000/11/09 21:29:58 zarq Exp $
+
Permission is granted to make and distribute verbatim copies of this
manual provided the copyright notice and this permission notice are
preserved on all copies.
@section Libraries
@cindex requirements
-Before you can configure or build tinc, you need to have two libraries
-installed on your system, GMP and OpenSSL. If you try to configure tinc
-without having installed both, configure will give you an error message,
-and stop.
+Before you can configure or build tinc, you need to have the OpenSSL
+library installed on your system. If you try to configure tinc without
+having installed it, configure will give you an error message, and stop.
@menu
-* GMP::
* OpenSSL::
@end menu
@c ==================================================================
-@node GMP, OpenSSL, Libraries, Libraries
-@subsection GMP
-
-@cindex GMP
-tinc uses the GNU Multiple Precision (GMP) library to do some
-authentication-related calculations. tinc cannot run without this
-library. If you try to configure the tinc source code without this
-library installed, you will get an error message.
-
-Currently, versions 1.x, 2.x, 3.0 and 3.0.1 of this library are
-supported. You may try to configure if you have another version
-installed, chances are big it works without a problem.
-
-You can use your operating system's package manager to install this if
-available. Make sure you install the development AND runtime versions
-of this package.
-
-If you can't install GMP this way, you can get the source of this latest
-version of this library from
-@url{http://www.gnu.org/software/gmp/gmp.html}. Instructions on how to
-configure, build and install this package are included within the
-package. Please make sure you build development and runtime libraries
-(which is the default).
-
-
-@c ==================================================================
-@node OpenSSL, , GMP, Libraries
+@node OpenSSL, , Libraries, Libraries
@subsection OpenSSL
@cindex OpenSSL
this library. Other versions may also work, but we can guarantee
nothing.
-Disclaimers from the subsection on GMP also apply here; if this library
-is not installed, you wil get an error when running configure. Support
-for running tinc without having OpenSSL installed @emph{may} be added in
-the future.
+If this library is not installed, you wil get an error when configuring
+tinc for build. Support for running tinc without having OpenSSL
+installed @emph{may} be added in the future.
+
+You can use your operating system's package manager to install this if
+available. Make sure you install the development AND runtime versions
+of this package.
If you have to install OpenSSL manually, you can get the source code
from @url{http://www.openssl.org/}. Instructions on how to configure,
after me:
@example
-ifconfig tap@emph{n} hw ether fe:fd:@emph{xx}:@emph{xx}:@emph{xx}:@emph{xx}
+ifconfig tap@emph{n} hw ether fe:fd:00:00:00:00
@end example
-The @emph{n} here is the number of the ethertap device you want to use.
-It should be the same @emph{n} as the one you use for
-@file{/dev/tap@emph{n}}. The @emph{xx}s are four hexadecimal numbers
-(0--ff). With previous versions of tincd, it didn't matter what they
-were. But newer kernels require properly set up ethernet addresses. In
-fact, the old behavior was wrong. It is required that the @emph{xx}s
-match the numbers of the IP address you will give to the tap device and
-to the MyOwnVPNIP configuration (which will be discussed later).
-
@cindex MAC address
@cindex hardware address
-@strong{Tip}: for finding out what the MAC address of the tap interface
-should be, you can use the following command:
-
-@example
-$ printf 'fe:fd:%02x:%02x:%02x:%02x' 10 1 54 1
-fe:fd:0a:01:36:01
-@end example
+@strong{Note:} Since version 1.0pre3, all interface addresses are set to
+this address, whereas previous versions required the MAC to match the
+actual IP address.
@cindex ifconfig
To activate the device, you have to assign an IP address to it. To set
@item MyVirtualIP = <local address[/maskbits]>
This is an alias for MyOwnVPNIP.
-@item Passphrases = <directory> (/etc/tinc/NETNAME/passphrases)
-The directory where tinc will look for passphrases when someone tries to
-connect. Please see the manpage for genauth(8) for more information
-about passphrases as used by tinc.
-
@item PingTimeout = <seconds> (5)
The number of seconds of inactivity that tinc will wait before sending a
probe to the other end. If that other end doesn't answer within that
same amount of seconds, the connection is terminated, and the others
will be notified of this.
+@item PrivateKey = <key>
+This is a sequence of hexadecimal numbers, as generated by ``tincd
+--generate-keys''.
+
+@item PublicKey = <key>
+This is a sequence of hexadecimal numbers, as generated by ``tincd
+--generate-keys''.
+
@item TapDevice = <device> (/dev/tap0)
The ethertap device to use. Note that you can only use one device per
daemon. The info pages of the tinc package contain more information