I am trying to determine the best way to link different private networks together, similar to the branch office example given online. However, in my case, the private networks are split up. For example, I would like to connect subnets such as: 10.30.0.0/16 172.23.0.0/16 10.90.50.0/24 192.168.3.0/24 How does this affect my tinc-up files? What subnet mask do I give the tinc interface? Can this work? -- patrick correa patrickc81 at gmail.com -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://www.tinc-vpn.org/pipermail/tinc/attachments/20150315/ad8a2dc2/attachment.html>
Sure. Pick a new unused private network such as 10.255.255.0/24 for your vpn. On Mar 15, 2015 3:34 AM, "Patrick C" <patrickc81 at gmail.com> wrote:> I am trying to determine the best way to link different private networks > together, similar to the branch office example given online. However, in my > case, the private networks are split up. For example, I would like to > connect subnets such as: > > 10.30.0.0/16 > 172.23.0.0/16 > 10.90.50.0/24 > 192.168.3.0/24 > > How does this affect my tinc-up files? What subnet mask do I give the tinc > interface? Can this work? > > > > > > > > > -- > patrick correa > patrickc81 at gmail.com > > _______________________________________________ > tinc mailing list > tinc at tinc-vpn.org > http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc > >-------------- next part -------------- An HTML attachment was scrubbed... URL: <http://www.tinc-vpn.org/pipermail/tinc/attachments/20150315/56612e40/attachment.html>
On Sun, Mar 15, 2015 at 01:08:42AM -0400, Patrick C wrote:> I am trying to determine the best way to link different private networks > together, similar to the branch office example given online. However, in my > case, the private networks are split up. For example, I would like to > connect subnets such as: > > 10.30.0.0/16 > 172.23.0.0/16 > 10.90.50.0/24 > 192.168.3.0/24 > > How does this affect my tinc-up files? What subnet mask do I give the tinc > interface? Can this work?You can have tinc work with all these subnets simultaneously. Assuming you are on a node that has IP address 172.23.1.1, you would put the following in its tinc-up script: #!/bin/sh ip addr add 172.23.1.1/16 dev $INTERFACE ip route add 10.30.0.0/16 dev $INTERFACE ip route add 10.90.50.0/24 dev $INTERFACE ip route add 192.168.3.0/24 dev $INTERFACE ip link set dev $INTERFACE up This will ensure packets for those subnets will always go via tinc. You can also do this more dynamically, and instead of having those ip route commands in tinc-up, you can put this in the script named subnet-up: #!/bin/sh ip route add $SUBNET dev $INTERFACE This will automatically add routes based on what Subnets your nodes have in their host config files. -- Met vriendelijke groet / with kind regards, Guus Sliepen <guus at tinc-vpn.org> -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 819 bytes Desc: Digital signature URL: <http://www.tinc-vpn.org/pipermail/tinc/attachments/20150315/dff13cff/attachment.sig>
Apparently Analagous Threads
- Converting mailboxes from one Maildir format to another
- Can't ccess to share disk by XP pro neighboring with samba 2.2.12
- how to setup massive traffic shaping? (2 class B nets)
- Can't access to share disk by XP pro neighboring with samba 2.2.12
- Two networks on one interface problem