From 1de2885de4c3a375cb0dc77309a559f05c437a0c Mon Sep 17 00:00:00 2001 From: Christian Pointner Date: Fri, 27 Feb 2009 19:07:46 +0000 Subject: added p2p example config --- etc/uanytun/autostart | 4 ++- etc/uanytun/client1/config | 2 +- etc/uanytun/client2/config | 2 +- etc/uanytun/client3/config | 2 +- etc/uanytun/p2p-a/config | 82 ++++++++++++++++++++++++++++++++++++++++++++++ etc/uanytun/p2p-b/config | 82 ++++++++++++++++++++++++++++++++++++++++++++++ 6 files changed, 170 insertions(+), 4 deletions(-) create mode 100644 etc/uanytun/p2p-a/config create mode 100644 etc/uanytun/p2p-b/config (limited to 'etc') diff --git a/etc/uanytun/autostart b/etc/uanytun/autostart index 08ae9e9..f20d7e9 100644 --- a/etc/uanytun/autostart +++ b/etc/uanytun/autostart @@ -1,3 +1,5 @@ -client1 +p2p-a +#p2p-b +#client1 #client2 #client3 diff --git a/etc/uanytun/client1/config b/etc/uanytun/client1/config index 702a7a6..a7d4f52 100644 --- a/etc/uanytun/client1/config +++ b/etc/uanytun/client1/config @@ -72,7 +72,7 @@ port 4444 ## Device name #dev uanytun0 -## Automaticaly configure the interface an set a route +## Automaticaly configure the interface ## ## We highly recommend the use of the post up script to do this ## diff --git a/etc/uanytun/client2/config b/etc/uanytun/client2/config index 629e222..04ec3cf 100644 --- a/etc/uanytun/client2/config +++ b/etc/uanytun/client2/config @@ -72,7 +72,7 @@ port 4444 ## Device name #dev uanytun0 -## Automaticaly configure the interface an set a route +## Automaticaly configure the interface ## ## We highly recommend the use of the post up script to do this ## diff --git a/etc/uanytun/client3/config b/etc/uanytun/client3/config index bf409ac..7de1694 100644 --- a/etc/uanytun/client3/config +++ b/etc/uanytun/client3/config @@ -72,7 +72,7 @@ port 4444 ## Device name #dev uanytun0 -## Automaticaly configure the interface an set a route +## Automaticaly configure the interface ## ## We highly recommend the use of the post up script to do this ## diff --git a/etc/uanytun/p2p-a/config b/etc/uanytun/p2p-a/config new file mode 100644 index 0000000..42caa9c --- /dev/null +++ b/etc/uanytun/p2p-a/config @@ -0,0 +1,82 @@ +############################# +## Main options # +############################# + +## device type tun = ip/ipv6, tap = ethernet +type tun + +## Automaticaly configure the interface +## the address hast to be supplied in CIDR notation +ifconfig 192.168.223.1/30 + +## payload encryption algorithm +#cipher null +#cipher aes-ctr-128 +#cipher aes-ctr-192 +#cipher aes-ctr-256 +cipher aes-ctr + +## message authentication algorithm +#auth-algo null +auth-algo sha1 + +## Passphrase +## this is used to generate the crypto-key and salt +## this should be al least 30 characters +passphrase Creating_P2P_VPN_Tunnels_With_Anytun_Is_Easy + +## local ip address to bind to (for tunnel data) +## (if you run an anycast cluster this has to be the anycast ip address) +#interface + +## local port to bind to (for tunnel data) +## make sure to use a different port for every server and client! +port 4444 + +## The remote host and port +remote-host p2p-b.example.com +remote-port 4444 + +############################# +## Debug options # +############################# + +## don't run in background +#nodaemonize + +## additional log to standard output with a level of 5 +#log stdout:5 + + +############################# +## Expert options # +############################# + +## log to syslog with a level of 3 +log syslog:3,uanytun-p2p-a,daemon + +## change user and group after init +username nobody +groupname nogroup + +## chroot to /var/run/uanytun +#chroot /var/run/uanytun + +## key derivation pseudo random function +#kd-prf null +#kd-prf aes-ctr +#kd-prf aes-ctr-128 +#kd-prf aes-ctr-192 +#kd-prf aes-ctr-256 + +## Device name +#dev uanytun0 + +## Manually set encryption key and salt +## (this replaces the passphrase) +#key 0123456789ABCDEF0123456789ABCDEF +#salt 0123456789ABCD0123456789ABCD + +## Setting a window size > 0 will enable replay protection +## This most likely will only work with external rekeying +#window-size 0 diff --git a/etc/uanytun/p2p-b/config b/etc/uanytun/p2p-b/config new file mode 100644 index 0000000..32dcc87 --- /dev/null +++ b/etc/uanytun/p2p-b/config @@ -0,0 +1,82 @@ +############################# +## Main options # +############################# + +## device type tun = ip/ipv6, tap = ethernet +type tun + +## Automaticaly configure the interface +## the address hast to be supplied in CIDR notation +ifconfig 192.168.223.2/30 + +## payload encryption algorithm +#cipher null +#cipher aes-ctr-128 +#cipher aes-ctr-192 +#cipher aes-ctr-256 +cipher aes-ctr + +## message authentication algorithm +#auth-algo null +auth-algo sha1 + +## Passphrase +## this is used to generate the crypto-key and salt +## this should be al least 30 characters +passphrase Creating_P2P_VPN_Tunnels_With_Anytun_Is_Easy + +## local ip address to bind to (for tunnel data) +## (if you run an anycast cluster this has to be the anycast ip address) +#interface + +## local port to bind to (for tunnel data) +## make sure to use a different port for every server and client! +port 4444 + +## The remote host and port +remote-host p2p-a.example.com +remote-port 4444 + +############################# +## Debug options # +############################# + +## don't run in background +#nodaemonize + +## additional log to standard output with a level of 5 +#log stdout:5 + + +############################# +## Expert options # +############################# + +## log to syslog with a level of 3 +log syslog:3,uanytun-p2p-b,daemon + +## change user and group after init +username nobody +groupname nogroup + +## chroot to /var/run/uanytun +#chroot /var/run/uanytun + +## key derivation pseudo random function +#kd-prf null +#kd-prf aes-ctr +#kd-prf aes-ctr-128 +#kd-prf aes-ctr-192 +#kd-prf aes-ctr-256 + +## Device name +#dev uanytun0 + +## Manually set encryption key and salt +## (this replaces the passphrase) +#key 0123456789ABCDEF0123456789ABCDEF +#salt 0123456789ABCD0123456789ABCD + +## Setting a window size > 0 will enable replay protection +## This most likely will only work with external rekeying +#window-size 0 -- cgit v1.2.3