Versione 1 del 2013-03-19 21:37:29

Nascondi questo messaggio
Italiano English
Modifica History Actions

IsoleVPN

This VPN is mainly used to connect network islands when it is very difficult to build a wired/wireless link ( for example two community networks in very distant city ). It is not aimed to connect single persons that wants access internal services via VPN.

It is recommended to avoid data traffic over the VPN because it will slow down troubleshooting operation that is one of main use of the VPN itself.

Connect to the VPN between islands with Tinc

1) Install tinc on your Linux (e.g. apt-get install tinc) MAKE SURE YOU HAVE AT LEAST TINC 1.0.13

2) mkdir /etc/tinc/isole

3) Create /etc/tinc/isole/tinc.conf

Name = yournickname
ConnectTo = coppermine
ConnectTo = zefiro
ConnectTo = RomaVpnIsole
ConnectTo = BitArno
Mode = switch

Mode switch is required because tinc will operate with a tap interface, needed to run babeld on it.

4) Create the hosts folder mkdir /etc/tinc/isole/hosts/

5) Generate a Keypair tincd -n isole -K

6) Add only keys you trust ( at least the ones you specified as ConnectTo ) as authorized hosts files from ChiaviTincVPNIsole (each file you add should appear like this):

YourPreferredEditor /etc/tinc/isole/hosts/HostNickName

{{

Address = Host_Address_If_Available


BEGIN RSA PUBLIC KEY


MIIBCgKCAQEAz3Tmd+1gK0rhLuNw2x3ueT7Fel0+PuBg6EU1bWIhIH5VM9WzCOC7 sWPVZn0Dgk+y2NdKokUEUF2J3BdNS/wPzCCu2shGGM/DvsLoZ/aV1+2R0F3/gInK TXKAJun1ffoORTQTqhfop1Bfn8BZjKF4efagDCNdQanl8vVMRIqrFb3anXzbUI2O QVL1lIBom8KgsviE6VywVrF5thYzotqWVKH1K2hwgpZXGVsmimIiFr9hz3pBsOfZ dL2mmLuZXKx1JujdLq2zVYf1peh7ctcqXuXQfJRJIFGhvPndO9dluQUxtZz8StdY sVhQcmiyCnmvKNcbyIHQXCA+5zZYNNmu9wIDAQAB


END RSA PUBLIC KEY


}}

This file has the address ( if available ) and the public key of the VPN node