<html><head><meta http-equiv="Content-Type" content="text/html charset=us-ascii"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class="">Hello,<div class=""><br class=""></div><div class="">I have been using tinc for quite a while now and am very pleased with it.</div><div class="">Thanks a lot to everyone involved in the project!</div><div class=""><br class=""></div><div class="">I am running a VMware ESXi server in a datacenter that provides some services for me.</div><div class="">The virtual machines are connected with different networks running on separated VLANs using VMware vSphere port groups.</div><div class="">In order to use the services from my home network, I had the idea to set-up a tinc vpn bridge connection (Mode=Switch) between a VM (exposed to a port group that has access to all VLANs (4095)) and my home router.</div><div class="">That way, I could simply transport the VLANs over the TAP tunnel, bridge them to my ethernet adapter, attach it to my managed switch and then use the GUI of my switch to choose which VLAN to use for which port.</div><div class="">This process is completely transparent to the clients in the network.</div><div class="">I stumbled accros this thread from 2010 which confirmed to me that it was indeed possible to build a setup like this.</div><div class=""><a href="https://www.tinc-vpn.org/pipermail/tinc/2010-March/002263.html" class="">https://www.tinc-vpn.org/pipermail/tinc/2010-March/002263.html</a></div><div class=""><br class=""></div><div class=""><pre style="word-wrap: break-word; white-space: pre-wrap;" class=""> (TINC VPN / OpenVPN)
-------- SITE 1 ------- -------- SITE 2 -------
eth1.100 <-> trunk0.100 <--\ ################ /--> trunk0.100 <-> eth1.100
eth1.105 <-> trunk0.105 <--->> ---TAP-TUNNEL--- <<---> trunk0.105 <-> eth1.105
eth1.110 <-> trunk0.110 <--/ ################ \--> trunk0.110 <-> eth1.110
<br class=""></pre><div class="">In order to not end up with a messy, hard-to-maintain configuration, I wrote a simple Python script for Linux (invokes iproute2 commands) to create all necessary interfaces and bridge them.</div><div class="">It seamlessly integrates with tinc's tinc-up, tinc-down scripts and worked reliably for me.</div><div class="">This might not be the most professional approach to this, but it certainly is one that "gets the job done".</div><div class=""><br class=""></div><div class="">I thought the script might be useful to someone in the community. Hence I decided to share it here. That way, it might be found by someone who is interested in this kind of setup.</div><div class=""><br class=""></div><div class=""><br class=""></div><div class=""><a href="https://github.com/schreiberstein/trunk-tap.py" class="">https://github.com/schreiberstein/trunk-tap.py</a></div><div class=""><br class=""></div><div class=""><br class=""></div><div class="">Best regards</div><div class="">Alexander Schreiber</div><div class=""><br class=""></div><div class=""><br class=""></div><div class=""><br class=""></div></div></body></html>