\input texinfo @c -*-texinfo-*-
+@c $Id: tinc.texi,v 1.8.4.8 2000/11/24 14:13:51 zarq Exp $
@c %**start of header
@setfilename tinc.info
@settitle tinc Manual
<itimmermans@@bigfoot.com>, Guus Sliepen <guus@@sliepen.warande.net> and
Wessel Dankers <wsl@@nl.linux.org>.
+$Id: tinc.texi,v 1.8.4.8 2000/11/24 14:13:51 zarq Exp $
Permission is granted to make and distribute verbatim copies of this
manual provided the copyright notice and this permission notice are
<itimmermans@@bigfoot.com>, Guus Sliepen <guus@@sliepen.warande.net> and
Wessel Dankers <wsl@@nl.linux.org>.
+$Id: tinc.texi,v 1.8.4.8 2000/11/24 14:13:51 zarq Exp $
+
Permission is granted to make and distribute verbatim copies of this
manual provided the copyright notice and this permission notice are
preserved on all copies.
likely compile and run, but it will not be able to send or receive data
packets.
+For a more up to date list, please check the list on our website:
+@uref{http://tinc.nl.linux.org/platforms.html}.
+
+
@c ==================================================================
@subsection Linux
@section Libraries
@cindex requirements
-Before you can configure or build tinc, you need to have two libraries
-installed on your system, GMP and OpenSSL. If you try to configure tinc
-without having installed both, configure will give you an error message,
-and stop.
+Before you can configure or build tinc, you need to have the OpenSSL
+library installed on your system. If you try to configure tinc without
+having installed it, configure will give you an error message, and stop.
@menu
-* GMP::
* OpenSSL::
@end menu
@c ==================================================================
-@node GMP, OpenSSL, Libraries, Libraries
-@subsection GMP
-
-@cindex GMP
-tinc uses the GNU Multiple Precision (GMP) library to do some
-authentication-related calculations. tinc cannot run without this
-library. If you try to configure the tinc source code without this
-library installed, you will get an error message.
-
-Currently, versions 1.x, 2.x, 3.0 and 3.0.1 of this library are
-supported. You may try to configure if you have another version
-installed, chances are big it works without a problem.
-
-You can use your operating system's package manager to install this if
-available. Make sure you install the development AND runtime versions
-of this package.
-
-If you can't install GMP this way, you can get the source of this latest
-version of this library from
-@url{http://www.gnu.org/software/gmp/gmp.html}. Instructions on how to
-configure, build and install this package are included within the
-package. Please make sure you build development and runtime libraries
-(which is the default).
-
-
-@c ==================================================================
-@node OpenSSL, , GMP, Libraries
+@node OpenSSL, , Libraries, Libraries
@subsection OpenSSL
@cindex OpenSSL
this library. Other versions may also work, but we can guarantee
nothing.
-Disclaimers from the subsection on GMP also apply here; if this library
-is not installed, you wil get an error when running configure. Support
-for running tinc without having OpenSSL installed @emph{may} be added in
-the future.
+If this library is not installed, you wil get an error when configuring
+tinc for build. Support for running tinc without having OpenSSL
+installed @emph{may} be added in the future.
+
+You can use your operating system's package manager to install this if
+available. Make sure you install the development AND runtime versions
+of this package.
If you have to install OpenSSL manually, you can get the source code
from @url{http://www.openssl.org/}. Instructions on how to configure,
make sure you build development and runtime libraries (which is the
default).
+If you installed the OpenSSL libraries from source, it may be necessary
+to let configure know where they are, by passing configure one of the
+--with-openssl-* parameters.
+
+@example
+--with-openssl=DIR OpenSSL library and headers prefix
+--with-openssl-include=DIR OpenSSL headers directory
+ (Default is OPENSSL_DIR/include)
+--with-openssl-lib=DIR OpenSSL library directory
+ (Default is OPENSSL_DIR/lib)
+@end example
+
@c
@c
after me:
@example
-ifconfig tap@emph{n} hw ether fe:fd:@emph{xx}:@emph{xx}:@emph{xx}:@emph{xx}
+ifconfig tap@emph{n} hw ether fe:fd:00:00:00:00
@end example
-The @emph{n} here is the number of the ethertap device you want to use.
-It should be the same @emph{n} as the one you use for
-@file{/dev/tap@emph{n}}. The @emph{xx}s are four hexadecimal numbers
-(0--ff). With previous versions of tincd, it didn't matter what they
-were. But newer kernels require properly set up ethernet addresses. In
-fact, the old behavior was wrong. It is required that the @emph{xx}s
-match the numbers of the IP address you will give to the tap device and
-to the MyOwnVPNIP configuration (which will be discussed later).
-
@cindex MAC address
@cindex hardware address
-@strong{Tip}: for finding out what the MAC address of the tap interface
-should be, you can use the following command:
-
-@example
-$ printf 'fe:fd:%02x:%02x:%02x:%02x' 10 1 54 1
-fe:fd:0a:01:36:01
-@end example
+@strong{Note:} Since version 1.0pre3, all interface addresses are set to
+this address, whereas previous versions required the MAC to match the
+actual IP address.
@cindex ifconfig
To activate the device, you have to assign an IP address to it. To set
@item MyVirtualIP = <local address[/maskbits]>
This is an alias for MyOwnVPNIP.
-@item Passphrases = <directory> (/etc/tinc/NETNAME/passphrases)
-The directory where tinc will look for passphrases when someone tries to
-connect. Please see the manpage for genauth(8) for more information
-about passphrases as used by tinc.
-
@item PingTimeout = <seconds> (5)
The number of seconds of inactivity that tinc will wait before sending a
probe to the other end. If that other end doesn't answer within that
same amount of seconds, the connection is terminated, and the others
will be notified of this.
+@item PrivateKey = <key>
+This is a sequence of hexadecimal numbers, as generated by ``tincd
+--generate-keys''.
+
+@item PublicKey = <key>
+This is a sequence of hexadecimal numbers, as generated by ``tincd
+--generate-keys''.
+
@item TapDevice = <device> (/dev/tap0)
The ethertap device to use. Note that you can only use one device per
daemon. The info pages of the tinc package contain more information