From e474bd05afa8659ca27aa1c75e0dd721db9ecb9f Mon Sep 17 00:00:00 2001 From: Christian Pointner Date: Tue, 17 Mar 2009 02:47:56 +0000 Subject: updated manpage and sample configs --- doc/uanytun.8.txt | 20 ++++++++++++-------- etc/uanytun/client1/config | 2 ++ etc/uanytun/client2/config | 2 ++ etc/uanytun/client3/config | 2 ++ etc/uanytun/p2p-a/config | 2 ++ etc/uanytun/p2p-b/config | 2 ++ 6 files changed, 22 insertions(+), 8 deletions(-) diff --git a/doc/uanytun.8.txt b/doc/uanytun.8.txt index f979c84..311c54a 100644 --- a/doc/uanytun.8.txt +++ b/doc/uanytun.8.txt @@ -30,7 +30,7 @@ SYNOPSIS [ *-s|--sender-id* ] [ *-w|--window-size* ] [ *-k|--kd-prf* ] -[ *-O|--anytun02-compat* ] +[ *-e|--role * ] [ *-E|--passphrase* ] [ *-K|--key* ] [ *-A|--salt* ] @@ -239,11 +239,15 @@ Possible values: * *aes-ctr-192* - AES in counter mode with 192 Bits * *aes-ctr-256* - AES in counter mode with 256 Bits --O|--anytun02-compat -~~~~~~~~~~~~~~~~~~~~ +-e|--role +~~~~~~~~~~~~~~~~ -Enable compatibility mode with version of anytun 0.2.x and prior. -This is for backwards compaitbility to old internet draft of satp. +SATP uses different session keys for inbound and outbound traffic. The +role parameter is used to determine which keys to use for outbound or +inbound packets. On both sides of a vpn connection different roles have +to be used. Possible values are *left* and *right*. You may also use +*alice* or *server* as a replacement for *left* and *bob* or *client* as +a replacement for *right*. By default *left* is used. -E|--passphrase ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ @@ -318,12 +322,12 @@ Host A: ^^^^^^^ uanytun -r hostb.example.com -t tun -n 192.168.123.1/30 -c aes-ctr-256 -k aes-ctr-256 \ - -E have_a_very_safe_and_productive_day + -E have_a_very_safe_and_productive_day -e left Host B: ^^^^^^^ uanytun -r hosta.example.com -t tun -n 192.168.123.2/30 -c aes-ctr-256 -k aes-ctr-256 \ - -E have_a_very_safe_and_productive_day + -E have_a_very_safe_and_productive_day -e right One unicast and one anycast tunnel endpoint: @@ -332,7 +336,7 @@ One unicast and one anycast tunnel endpoint: Unicast tunnel endpoint: ^^^^^^^^^^^^^^^^^^^^^^^^ -uanytun -r anycast.anytun.org -d anytun0 -t tun -n 192.0.2.2/30 -a null -c null -w 0 +uanytun -r anycast.anytun.org -d anytun0 -t tun -n 192.0.2.2/30 -a null -c null -w 0 -e client Anycast tunnel endpoints: ^^^^^^^^^^^^^^^^^^^^^^^^^ diff --git a/etc/uanytun/client1/config b/etc/uanytun/client1/config index 9fa8edd..b6b417d 100644 --- a/etc/uanytun/client1/config +++ b/etc/uanytun/client1/config @@ -2,6 +2,8 @@ ## Main options # ############################# +role client + ## Client ID ## (has to be unique for each client) mux 1 diff --git a/etc/uanytun/client2/config b/etc/uanytun/client2/config index f5283d8..0a62e07 100644 --- a/etc/uanytun/client2/config +++ b/etc/uanytun/client2/config @@ -2,6 +2,8 @@ ## Main options # ############################# +role client + ## Client ID ## (has to be unique for each client) mux 2 diff --git a/etc/uanytun/client3/config b/etc/uanytun/client3/config index 23c722b..e386210 100644 --- a/etc/uanytun/client3/config +++ b/etc/uanytun/client3/config @@ -2,6 +2,8 @@ ## Main options # ############################# +role client + ## Client ID ## (has to be unique for each client) mux 3 diff --git a/etc/uanytun/p2p-a/config b/etc/uanytun/p2p-a/config index 64f82ad..07eb51b 100644 --- a/etc/uanytun/p2p-a/config +++ b/etc/uanytun/p2p-a/config @@ -2,6 +2,8 @@ ## Main options # ############################# +role alice + ## device type tun = ip/ipv6, tap = ethernet type tun diff --git a/etc/uanytun/p2p-b/config b/etc/uanytun/p2p-b/config index 4b611d2..aefcf10 100644 --- a/etc/uanytun/p2p-b/config +++ b/etc/uanytun/p2p-b/config @@ -2,6 +2,8 @@ ## Main options # ############################# +role bob + ## device type tun = ip/ipv6, tap = ethernet type tun -- cgit v1.2.3