hey, is there a way to run tinc on a (linux) box, with a public ip, but on which i don't have root privileges ? the server just connects nodes (behind natted firewall) & relays their traffic, so no need for tap/tun interface on the box itself. ptr_ -- http://www.L45.be/voidpointer 0493 52 5009
Hi mate, You can run the tinc daemon as a user. Usually on most systems, if you're not root, you won't be able to listen on the default tinc port (655). Configure tinc to listen on a different port and it should work. Mike On 15/04/2010, at 8:57 AM, pieter.heremans wrote:> hey, > > is there a way to run tinc on a (linux) box, with a public ip, > but on which i don't have root privileges ? > > the server just connects nodes (behind natted firewall) & relays > their traffic, so no need for tap/tun interface on the box itself. > > ptr_ > > -- > http://www.L45.be/voidpointer > 0493 52 5009 > _______________________________________________ > tinc mailing list > tinc at tinc-vpn.org > http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc
auwch no was to happy to see it all starting up no traffic goes through i get this error when switching to debuglevel 5 (ctrl-c) Error while reading from Linux ethertap device /tmp/sock: Resource temporarily unavailable maybe important: all nodes are configured in Mode=switch ptr_ On Thu, Apr 15, 2010 at 8:04 AM, pieter.heremans <pieter at l45.be> wrote:> wow great > > just tried it out > works perfectly > > thanks! > ptr_ > > On Thu, Apr 15, 2010 at 7:45 AM, ?<heroxbd at gmail.com> wrote: >> Hey Pieter, >> >> "pieter.heremans" <pieter at L45.be> writes: >> >>> can you run tincd without setting up a tun/tap device ? >> >> I have heard (not verified) it is possible to bind to any socket file >> instead of tun/tap. >> >> You can also map the socket file in a User Mode Linux as a virtual >> adpter. >> >> Cheers, >> -- >> XU Benda >> Research Center for Neutrino Science >> Tohoku University >> JAPAN >> >> http://www.awa.tohoku.ac.jp/~benda >> _______________________________________________ >> tinc mailing list >> tinc at tinc-vpn.org >> http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc >> > > > > -- > http://www.L45.be/voidpointer > 0493 52 5009 >-- http://www.L45.be/voidpointer 0493 52 5009
On Thu, Apr 15, 2010 at 12:57:18AM +0200, pieter.heremans wrote:> is there a way to run tinc on a (linux) box, with a public ip, > but on which i don't have root privileges ?Yes, you start tinc as a normal user or let tinc drop root privileges after starting with the --user option.> the server just connects nodes (behind natted firewall) & relays > their traffic, so no need for tap/tun interface on the box itself.There are several ways. Either keep the tun/tap device but don't configure it (tinc can create it if you start it as root with the --user option, or you can create a static tun/tap interface with the tunctl tool from uml-utils for example), or you can recompile tinc with a dummy tun/tap driver: ./configure <extra options> ln -sf dummy/device.c src/ make -- Met vriendelijke groet / with kind regards, Guus Sliepen <guus at tinc-vpn.org> -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 198 bytes Desc: Digital signature URL: <http://www.tinc-vpn.org/pipermail/tinc/attachments/20100415/d6423493/attachment.pgp>