X-Git-Url: https://tinc-vpn.org/git/browse?p=tinc;a=blobdiff_plain;f=doc%2Ftinc.texi;h=d9105862a044e207e1e921a8045ac845aeec46bf;hp=3302baa99474b2a2227cefe678dcaf80c3122fda;hb=6e27618708233998db7e5886ed9afaa21bb9d938;hpb=676b1c0ea111406eb94a74ae12878dfd5ad9f56d diff --git a/doc/tinc.texi b/doc/tinc.texi index 3302baa9..d9105862 100644 --- a/doc/tinc.texi +++ b/doc/tinc.texi @@ -1,4 +1,5 @@ \input texinfo @c -*-texinfo-*- +@c $Id: tinc.texi,v 1.8.4.7 2000/11/09 21:29:58 zarq Exp $ @c %**start of header @setfilename tinc.info @settitle tinc Manual @@ -16,6 +17,7 @@ Copyright @copyright{} 1998,199,2000 Ivo Timmermans , Guus Sliepen and Wessel Dankers . +$Id: tinc.texi,v 1.8.4.7 2000/11/09 21:29:58 zarq Exp $ Permission is granted to make and distribute verbatim copies of this manual provided the copyright notice and this permission notice are @@ -40,6 +42,8 @@ Copyright @copyright{} 1998,1999,2000 Ivo Timmermans , Guus Sliepen and Wessel Dankers . +$Id: tinc.texi,v 1.8.4.7 2000/11/09 21:29:58 zarq Exp $ + Permission is granted to make and distribute verbatim copies of this manual provided the copyright notice and this permission notice are preserved on all copies. @@ -349,45 +353,17 @@ Unfortunately somebody still has to write the text. @section Libraries @cindex requirements -Before you can configure or build tinc, you need to have two libraries -installed on your system, GMP and OpenSSL. If you try to configure tinc -without having installed both, configure will give you an error message, -and stop. +Before you can configure or build tinc, you need to have the OpenSSL +library installed on your system. If you try to configure tinc without +having installed it, configure will give you an error message, and stop. @menu -* GMP:: * OpenSSL:: @end menu @c ================================================================== -@node GMP, OpenSSL, Libraries, Libraries -@subsection GMP - -@cindex GMP -tinc uses the GNU Multiple Precision (GMP) library to do some -authentication-related calculations. tinc cannot run without this -library. If you try to configure the tinc source code without this -library installed, you will get an error message. - -Currently, versions 1.x, 2.x, 3.0 and 3.0.1 of this library are -supported. You may try to configure if you have another version -installed, chances are big it works without a problem. - -You can use your operating system's package manager to install this if -available. Make sure you install the development AND runtime versions -of this package. - -If you can't install GMP this way, you can get the source of this latest -version of this library from -@url{http://www.gnu.org/software/gmp/gmp.html}. Instructions on how to -configure, build and install this package are included within the -package. Please make sure you build development and runtime libraries -(which is the default). - - -@c ================================================================== -@node OpenSSL, , GMP, Libraries +@node OpenSSL, , Libraries, Libraries @subsection OpenSSL @cindex OpenSSL @@ -396,10 +372,13 @@ by the OpenSSL library. We recommend using version 0.9.5 or 0.9.6 of this library. Other versions may also work, but we can guarantee nothing. -Disclaimers from the subsection on GMP also apply here; if this library -is not installed, you wil get an error when running configure. Support -for running tinc without having OpenSSL installed @emph{may} be added in -the future. +If this library is not installed, you wil get an error when configuring +tinc for build. Support for running tinc without having OpenSSL +installed @emph{may} be added in the future. + +You can use your operating system's package manager to install this if +available. Make sure you install the development AND runtime versions +of this package. If you have to install OpenSSL manually, you can get the source code from @url{http://www.openssl.org/}. Instructions on how to configure, @@ -553,27 +532,14 @@ The actual setup of the ethertap device is quite simple, just repeat after me: @example -ifconfig tap@emph{n} hw ether fe:fd:@emph{xx}:@emph{xx}:@emph{xx}:@emph{xx} +ifconfig tap@emph{n} hw ether fe:fd:00:00:00:00 @end example -The @emph{n} here is the number of the ethertap device you want to use. -It should be the same @emph{n} as the one you use for -@file{/dev/tap@emph{n}}. The @emph{xx}s are four hexadecimal numbers -(0--ff). With previous versions of tincd, it didn't matter what they -were. But newer kernels require properly set up ethernet addresses. In -fact, the old behavior was wrong. It is required that the @emph{xx}s -match the numbers of the IP address you will give to the tap device and -to the MyOwnVPNIP configuration (which will be discussed later). - @cindex MAC address @cindex hardware address -@strong{Tip}: for finding out what the MAC address of the tap interface -should be, you can use the following command: - -@example -$ printf 'fe:fd:%02x:%02x:%02x:%02x' 10 1 54 1 -fe:fd:0a:01:36:01 -@end example +@strong{Note:} Since version 1.0pre3, all interface addresses are set to +this address, whereas previous versions required the MAC to match the +actual IP address. @cindex ifconfig To activate the device, you have to assign an IP address to it. To set @@ -754,17 +720,20 @@ maskbits is the number of bits set to 1 in the netmask part. @item MyVirtualIP = This is an alias for MyOwnVPNIP. -@item Passphrases = (/etc/tinc/NETNAME/passphrases) -The directory where tinc will look for passphrases when someone tries to -connect. Please see the manpage for genauth(8) for more information -about passphrases as used by tinc. - @item PingTimeout = (5) The number of seconds of inactivity that tinc will wait before sending a probe to the other end. If that other end doesn't answer within that same amount of seconds, the connection is terminated, and the others will be notified of this. +@item PrivateKey = +This is a sequence of hexadecimal numbers, as generated by ``tincd +--generate-keys''. + +@item PublicKey = +This is a sequence of hexadecimal numbers, as generated by ``tincd +--generate-keys''. + @item TapDevice = (/dev/tap0) The ethertap device to use. Note that you can only use one device per daemon. The info pages of the tinc package contain more information