summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
-rw-r--r--doc/uanytun.8.txt20
-rw-r--r--etc/uanytun/client1/config2
-rw-r--r--etc/uanytun/client2/config2
-rw-r--r--etc/uanytun/client3/config2
-rw-r--r--etc/uanytun/p2p-a/config2
-rw-r--r--etc/uanytun/p2p-b/config2
6 files changed, 22 insertions, 8 deletions
diff --git a/doc/uanytun.8.txt b/doc/uanytun.8.txt
index f979c84..311c54a 100644
--- a/doc/uanytun.8.txt
+++ b/doc/uanytun.8.txt
@@ -30,7 +30,7 @@ SYNOPSIS
[ *-s|--sender-id* <sender id> ]
[ *-w|--window-size* <window size> ]
[ *-k|--kd-prf* <kd-prf type> ]
-[ *-O|--anytun02-compat* ]
+[ *-e|--role <role>* ]
[ *-E|--passphrase* <pass phrase> ]
[ *-K|--key* <master key> ]
[ *-A|--salt* <master salt> ]
@@ -239,11 +239,15 @@ Possible values:
* *aes-ctr-192* - AES in counter mode with 192 Bits
* *aes-ctr-256* - AES in counter mode with 256 Bits
--O|--anytun02-compat
-~~~~~~~~~~~~~~~~~~~~
+-e|--role <role>
+~~~~~~~~~~~~~~~~
-Enable compatibility mode with version of anytun 0.2.x and prior.
-This is for backwards compaitbility to old internet draft of satp.
+SATP uses different session keys for inbound and outbound traffic. The
+role parameter is used to determine which keys to use for outbound or
+inbound packets. On both sides of a vpn connection different roles have
+to be used. Possible values are *left* and *right*. You may also use
+*alice* or *server* as a replacement for *left* and *bob* or *client* as
+a replacement for *right*. By default *left* is used.
-E|--passphrase <pass phrase>
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
@@ -318,12 +322,12 @@ Host A:
^^^^^^^
uanytun -r hostb.example.com -t tun -n 192.168.123.1/30 -c aes-ctr-256 -k aes-ctr-256 \
- -E have_a_very_safe_and_productive_day
+ -E have_a_very_safe_and_productive_day -e left
Host B:
^^^^^^^
uanytun -r hosta.example.com -t tun -n 192.168.123.2/30 -c aes-ctr-256 -k aes-ctr-256 \
- -E have_a_very_safe_and_productive_day
+ -E have_a_very_safe_and_productive_day -e right
One unicast and one anycast tunnel endpoint:
@@ -332,7 +336,7 @@ One unicast and one anycast tunnel endpoint:
Unicast tunnel endpoint:
^^^^^^^^^^^^^^^^^^^^^^^^
-uanytun -r anycast.anytun.org -d anytun0 -t tun -n 192.0.2.2/30 -a null -c null -w 0
+uanytun -r anycast.anytun.org -d anytun0 -t tun -n 192.0.2.2/30 -a null -c null -w 0 -e client
Anycast tunnel endpoints:
^^^^^^^^^^^^^^^^^^^^^^^^^
diff --git a/etc/uanytun/client1/config b/etc/uanytun/client1/config
index 9fa8edd..b6b417d 100644
--- a/etc/uanytun/client1/config
+++ b/etc/uanytun/client1/config
@@ -2,6 +2,8 @@
## Main options #
#############################
+role client
+
## Client ID
## (has to be unique for each client)
mux 1
diff --git a/etc/uanytun/client2/config b/etc/uanytun/client2/config
index f5283d8..0a62e07 100644
--- a/etc/uanytun/client2/config
+++ b/etc/uanytun/client2/config
@@ -2,6 +2,8 @@
## Main options #
#############################
+role client
+
## Client ID
## (has to be unique for each client)
mux 2
diff --git a/etc/uanytun/client3/config b/etc/uanytun/client3/config
index 23c722b..e386210 100644
--- a/etc/uanytun/client3/config
+++ b/etc/uanytun/client3/config
@@ -2,6 +2,8 @@
## Main options #
#############################
+role client
+
## Client ID
## (has to be unique for each client)
mux 3
diff --git a/etc/uanytun/p2p-a/config b/etc/uanytun/p2p-a/config
index 64f82ad..07eb51b 100644
--- a/etc/uanytun/p2p-a/config
+++ b/etc/uanytun/p2p-a/config
@@ -2,6 +2,8 @@
## Main options #
#############################
+role alice
+
## device type tun = ip/ipv6, tap = ethernet
type tun
diff --git a/etc/uanytun/p2p-b/config b/etc/uanytun/p2p-b/config
index 4b611d2..aefcf10 100644
--- a/etc/uanytun/p2p-b/config
+++ b/etc/uanytun/p2p-b/config
@@ -2,6 +2,8 @@
## Main options #
#############################
+role bob
+
## device type tun = ip/ipv6, tap = ethernet
type tun