Create a VPN network with some PC clients.
Guus Sliepen
guus at tinc-vpn.org
Sun Oct 17 11:03:54 CEST 2010
On Sun, Oct 17, 2010 at 10:56:35AM +0200, Ramses II wrote:
> I want create a VPN with some PC clients and only one server, instead of
> LAN-to-LAN, but I'm not very sure how to do this.
>
> For example, I need to have:
>
> - Server LAN -------- (192.168.0.1/24) ---- tinc-VPN ---- (192.168.100.1/24)
> - Client-01 LAN --- (192.168.50.1/24) ---- tinc-VPN ---- (192.168.100.10/24)
> - Client-02 LAN --- (192.168.80.1/24) ---- tinc-VPN ---- (192.168.100.11/24)
>
> Currently, I have this config in the server:
>
> ifconfig $INTERFACE 192.168.100.1 netmask 255.255.0.0
Why the 255.255.0.0 netmask? If your VPN only consists of nodes with
192.168.100.* addresses, then the netmask should be 255.255.255.0.
> Subnet = 192.168.100.0/24
And in the host config files, use /32 instead of /24, since each node only uses
one IP address from the whole VPN range.
> ----------- Client-01 ----------
> Subnet = 192.168.101.0/24
That should be 192.168.100.10/32, according to the diagram you wrote above.
> ifconfig $INTERFACE 192.168.101.1 netmask 255.255.0.0
And 192.168.100.10 netmask 255.255.255.0.
> If I put them both on the same subnet, evidently, it can not work in router
> mode.
With the /32 Subnets this is not a problem.
--
Met vriendelijke groet / with kind regards,
Guus Sliepen <guus at tinc-vpn.org>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 198 bytes
Desc: Digital signature
URL: <http://www.tinc-vpn.org/pipermail/tinc/attachments/20101017/c1cf2bd7/attachment.pgp>
More information about the tinc
mailing list