Hi, I have some questions about tinc. " *Automatic full mesh routing*Regardless of how you set up the tinc daemons to connect to each other, VPN traffic is always (if possible) sent directly to the destination, without going through intermediate hops. " 1- To have client to client direct connection and don't have traffic through the server should I have port forward at the NAT? Or a client to client tunnel can be build ignoring the NAT rules? 2- Is there a kind of web interface to manager the server? 3- Any release date of tinc 2.0 version? Kind regards, Cristiano. animati.com.br -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://www.tinc-vpn.org/pipermail/tinc/attachments/20150608/9ed18ba4/attachment.html>
This is the way I understand it. All nodes become aware of all other nodes. As long as one node can connect to another, you'll get a client to client connection. If 2 clients are both behind blocking firewalls, neither will be able to directly connect to the other without one of them having a port open. In that situation their traffic will need to route through another node. On Mon, Jun 8, 2015 at 12:55 PM, Cristiano Albiero Berni < cristiano at animati.com.br> wrote:> Hi, > I have some questions about tinc. > > " > *Automatic full mesh routing*Regardless of how you set up the tinc > daemons to connect to each other, VPN traffic is always (if possible) sent > directly to the destination, without going through intermediate hops. > " > > 1- To have client to client direct connection and don't have traffic > through the server should I have port forward at the NAT? Or a client to > client tunnel can be build ignoring the NAT rules? > > 2- Is there a kind of web interface to manager the server? > > 3- Any release date of tinc 2.0 version? > > > > Kind regards, > Cristiano. > animati.com.br > > > _______________________________________________ > tinc mailing list > tinc at tinc-vpn.org > http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc > >-------------- next part -------------- An HTML attachment was scrubbed... URL: <http://www.tinc-vpn.org/pipermail/tinc/attachments/20150608/ef4996d6/attachment.html>
2- Is there a kind of web interface to manager the server? 3- Any release date of tinc 2.0 version? 2015-06-08 16:30 GMT-03:00 Donald Pearson <donaldwhpearson at gmail.com>:> This is the way I understand it. > > All nodes become aware of all other nodes. As long as one node can > connect to another, you'll get a client to client connection. > > If 2 clients are both behind blocking firewalls, neither will be able to > directly connect to the other without one of them having a port open. In > that situation their traffic will need to route through another node. > > On Mon, Jun 8, 2015 at 12:55 PM, Cristiano Albiero Berni < > cristiano at animati.com.br> wrote: > >> Hi, >> I have some questions about tinc. >> >> " >> *Automatic full mesh routing*Regardless of how you set up the tinc >> daemons to connect to each other, VPN traffic is always (if possible) sent >> directly to the destination, without going through intermediate hops. >> " >> >> 1- To have client to client direct connection and don't have traffic >> through the server should I have port forward at the NAT? Or a client to >> client tunnel can be build ignoring the NAT rules? >> >> 2- Is there a kind of web interface to manager the server? >> >> 3- Any release date of tinc 2.0 version? >> >> >> >> Kind regards, >> Cristiano. >> animati.com.br >> >> >> _______________________________________________ >> tinc mailing list >> tinc at tinc-vpn.org >> http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc >> >> > > _______________________________________________ > tinc mailing list > tinc at tinc-vpn.org > http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc > >-- Cristiano Albiero Berni. animati.com.br 55 3286 4000 55 3286 4010 -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://www.tinc-vpn.org/pipermail/tinc/attachments/20150608/81c065d7/attachment.html>
On 6/8/2015 11:55 AM, Cristiano Albiero Berni wrote:> 2- Is there a kind of web interface to manager the server?Tinc itself does not come with any web ui. However, I created a web ui for tomato firmware, which is available for select routers with the broadcom chipset. The "shibby" tomato firmware supports many newer routers, including ARM variants; Netgear R7000, Asus RT-68U etc. http://tomato.groov.pl/ I even made one that will run on the ancient wrt54gl. http://files.lancethepants.com/Firmware/MIPSR1/Toastman%207636%20%2B%20Tinc1.1.pre11/> 3- Any release date of tinc 2.0 version?Tinc 1.1 final still has not been released, and there is no definite release date set. AFAIK, there hasn't been any (major) work on 2.0. Probably safe to say many years down the road. tinc1.1 may still take a bit more time, though I feel like it's nearing a final. No idea though. Probably one of those situation you can say, "it's done when it's done".
about tomato firmware... can I install it on a VMware virtual machine? tinc web ui is already included with the last tomato version? king regards, Cristiano. 2015-06-08 16:52 GMT-03:00 Lance Fredrickson <lancethepants at gmail.com>:> On 6/8/2015 11:55 AM, Cristiano Albiero Berni wrote: > > 2- Is there a kind of web interface to manager the server? >> > Tinc itself does not come with any web ui. > However, I created a web ui for tomato firmware, which is available for > select routers with the broadcom chipset. > > The "shibby" tomato firmware supports many newer routers, including ARM > variants; Netgear R7000, Asus RT-68U etc. > http://tomato.groov.pl/ > > I even made one that will run on the ancient wrt54gl. > > http://files.lancethepants.com/Firmware/MIPSR1/Toastman%207636%20%2B%20Tinc1.1.pre11/ > > 3- Any release date of tinc 2.0 version? >> > Tinc 1.1 final still has not been released, and there is no definite > release date set. AFAIK, there hasn't been any (major) work on 2.0. > Probably safe to say many years down the road. tinc1.1 may still take a > bit more time, though I feel like it's nearing a final. No idea though. > Probably one of those situation you can say, "it's done when it's done". > > _______________________________________________ > tinc mailing list > tinc at tinc-vpn.org > http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc >-- Cristiano Albiero Berni. animati.com.br 55 3286 4000 55 3286 4010 -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://www.tinc-vpn.org/pipermail/tinc/attachments/20150608/2827b315/attachment-0001.html>