Linux box as network gateway

Donald Pearson donaldwhpearson at gmail.com
Wed Mar 19 20:03:56 CET 2014 

Well you use brctl to bridge the virtual adapter (interface) to a real
physical interface, and that's represented by an additional virtual
interface which is the bridge itself.  That bridge is what you configure
with an IP on your LAN statically or via DHCP.

If you do all this ahead of time you don't even need a tinc-up script.

If you want the bridge to be built up when tinc connects it would look
something like this.  Do the inverse for a tinc-down

tinc.conf
Name = Alpha
ConnectTo = Beta
ConnectTo = Charlie
Device = /dev/net/tun
Mode = switch
PrivateKeyFile = /etc/tinc/vpn/rsa_key.priv
#
#

Tinc-up
#!/bin/sh
modprobe tun
ifconfig vpn 0.0.0.0
ifconfig vpn up
ifconfig eth1 0.0.0.0
ifconfig eth1 up

brctl addbr bridge
brctl addif bridge vpn
brctl addif bridge eth1
ifconfig bridge 10.10.0.1 netmask 255.255.0.0
route add default gw 10.10.0.254 bridge
ifconfig bridge up




On Wed, Mar 19, 2014 at 2:44 PM, Aaron Anderson <anderson.aaron at gmail.com>wrote:

> Does connecting to that machine get you access to other machines on
> the network? That's what I'm having trouble with. I want to connect to
> machines that do not have tinc installed.
>
> On Wed, Mar 19, 2014 at 2:30 PM, vmlinux <vmlinux at charter.net> wrote:
> > Aaron Anderson said  on 03/19/2014 01:23 PM:
> >> I do already have those installed. I was really hoping for someone who
> >> had some already working configs or examples.
> >
> > # /etc/tinc/myvpn/tinc.conf
> > Name = mynode
> > AddressFamily = ipv4
> > interface = tinc0
> >
> > # /etc/tinc/myvpn/tinc-up
> > #!/bin/bash
> > ifconfig $INTERFACE 10.10.10.1 netmask 255.255.255.0
> >
> > # /etc/tinc/myvpn/tinc-down
> > #!/bin/bash
> > ifconfig $INTERFACE down
> >
> > # tincd -n myvpn
> >
> > _______________________________________________
> > tinc mailing list
> > tinc at tinc-vpn.org
> > http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc
> _______________________________________________
> tinc mailing list
> tinc at tinc-vpn.org
> http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.tinc-vpn.org/pipermail/tinc/attachments/20140319/208d6de5/attachment.html>

More information about the tinc mailing list