tinc - controlling communication between nodes

Yazeed Fataar yazeedfataar at gmail.com
Mon Feb 13 12:10:26 CET 2017


I have a simple hub and spoke topology where all my nodes connect to a
central node. Below is tinc.conf for main node

Name = main
Interface = tun0
Forwarding = kernel

and the remote nodes have same with ConnectTo = main.

I have tried to apply a basic iptable policy on the main node but the
traffic still seems to passthough and the nodes can communicate with each
other. How do I apply policy between the two remote nodes on the main hub
node? I would like in future to only allow a selected ports to be allowed
between the nodes but for now I want iptables to manage policy between

*Main node IPTABLES rule*

 iptables -A FORWARD -s <site1-ip> -d <site2-ip> -j DROP
 iptables -A FORWARD -s <site2-ip> -d <site1-ip> -j DROP
default DENY

<yazeedfataar at hotmail.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.tinc-vpn.org/pipermail/tinc/attachments/20170213/4d5f7d1f/attachment.html>

More information about the tinc mailing list