20200726: Difference between revisions
From charlesreid1
(→Tinc) |
(→Notes) |
||
| Line 4: | Line 4: | ||
* that requires network interfaces and ip addresses to be set up | * that requires network interfaces and ip addresses to be set up | ||
* installing tinc natively, whole point is to avoid fuss | * installing tinc natively, whole point is to avoid fuss | ||
* | * doesn't feel particularly secure, but it's all public/private key infra, soooo | ||
* | * tinc is more limited, requires clients to have tinc installed and keys copied | ||
* | * to get around that, create dorky socks proxy server that handles traffic to the wiki | ||
===Tinc=== | ===Tinc=== | ||
Revision as of 20:47, 26 July 2020
Notes
- pod private wiki requires a domain
- that requires network interfaces and ip addresses to be set up
- installing tinc natively, whole point is to avoid fuss
- doesn't feel particularly secure, but it's all public/private key infra, soooo
- tinc is more limited, requires clients to have tinc installed and keys copied
- to get around that, create dorky socks proxy server that handles traffic to the wiki
Tinc
On bespin (behind NAT):
$ cd /etc/tinc/master $ cat tinc.conf Name = bespin AddressFamily = any Mode = switch ConnectTo = dorky $ cat tinc-up #!/bin/sh ifconfig $INTERFACE 10.6.0.10 netmask 255.255.0.0 $ cat tinc-down #!/bin/sh ifconfig $INTERFACE down $ ls hosts/ bespin dorky
On dorky (public IP):
$ cd /etc/tinc/master $ cat tinc.conf Name = dorky AddressFamily = any Mode = switch $ cat tinc-up #!/bin/sh ifconfig $INTERFACE 10.6.0.1 netmask 255.255.0.0 $ cat tinc-down #!/bin/sh ifconfig $INTERFACE down $ ls hosts/ bespin dorky