Hi, I'm reading the tinc documentation [1], chapter 4 Configuration. I notice an apparent contradiction, and I wonder which part is correct. [1] http://tinc-vpn.org/documentation/tinc_4.html In part 4.3 "How connections work" this is stated: "If it [tinc] sees one or more ?ConnectTo? values pointing to other tinc daemons in that file, it will try to connect to those other daemons. Whether this succeeds or not and whether ?ConnectTo? is specified or not, tinc will listen for incoming connection from other deamons." In other words: regardless of its configuration, tinc always opens a listener which other hosts can connect to. In part 4.7 "Example configuration" however, I read the following: "Also, ConnectTo is given so that no-one can connect to this node." (as a comment on the example configuration of Branch B) In other words: tinc does not open a listener which other hosts can connect to. If I interpret these parts correctly, there is a contradiction. If so, which one of these is correct? If on the other hand I'm simply misinterpreting, please let me know. Kind regards, Erik Logtenberg.
On Mon, Mar 08, 2010 at 05:21:06PM +0100, Erik Logtenberg wrote:> I'm reading the tinc documentation [1], chapter 4 Configuration. I > notice an apparent contradiction, and I wonder which part is correct. > > In part 4.3 "How connections work" this is stated: > > "If it [tinc] sees one or more ?ConnectTo? values pointing to other tinc > daemons in that file, it will try to connect to those other daemons. > Whether this succeeds or not and whether ?ConnectTo? is specified or > not, tinc will listen for incoming connection from other deamons." > > In other words: regardless of its configuration, tinc always opens a > listener which other hosts can connect to.This is correct, tinc will always listen for incoming connections.> > In part 4.7 "Example configuration" however, I read the following: > > "Also, ConnectTo is given so that no-one can connect to this node." (as > a comment on the example configuration of Branch B)This is incorrect, I've fixed the documentation in the git repository. Thanks for noticing! -- Met vriendelijke groet / with kind regards, Guus Sliepen <guus at tinc-vpn.org> -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 198 bytes Desc: Digital signature URL: <http://www.tinc-vpn.org/pipermail/tinc/attachments/20100308/9733889f/attachment.pgp>
Maybe Matching Threads
- Conflicting Default Values. A trusts B. B trusts EvilNode. Does that mean A trusts EvilNode?
- Misunderstanding of Subnet directive in hosts files
- Help needed with Tinc Setup on remote hosts and lots of ISPs / Failover Problems between ISPs
- "Name" directive in tinc.conf
- Mac OS X and Linux