Help with tinc over http-tunnel

[Ramen Sen]

Hi,

I have successfully setup a tinc vpn between two machines, which is
great, and now need do the same to a machine behind a firewall (I do not
control the firewall, alas).  The firewall will allow port 80 out (via
an http proxy), so I wish to use GNU http-tunnel (or similar) to tunnel
through the firewall. 

I have also successfully used http-tunnel to tunnel a simple ppp over
ssh connection. This is a solution, but probably not a very good one.

I found a section in the README of 1.0pre8, saying: 

> This version of tinc supports multiple virtual networks at once. To 
> use this feature, you may supply a netname via the -n or --net 
> options. The standard locations for the config files will then be 
> /etc/tinc/<net>/. Because of this feature, tinc will send packets 
> directly to their destinations, instead of to the uplink. If this 
> behaviour is undesirable (for instance because of firewalls or other 
> restrictions), please use an older version of tinc (I would recommend 
> tinc-0.2.19). 

However, I picked up the following on the tinc mailing list archive:

>Johannes Lode wrote: 
>> So is it possible now again to use a single http tunnel (aka a single
>> TCP connection) as a carrier connection between two tinc daemons? 
> 
>With 1.0pre7, yes. 
> 
> Ivo

My question is how to achieve http-tunnelling using tinc 1.0pre7 or
pre8?   I'm hoping someone has managed to get this working, or knows at
least in theory how it should work.

Alternatively, does anyone know of another reasonably robust way of
doing this?

Many thanks for the great work! 
regards 
Ramen 



Tinc:         Discussion list about the tinc VPN daemon
Archive:      http://mail.nl.linux.org/lists/
Tinc site:    http://tinc.nl.linux.org/