Changes

Tinc VPN configuration examples (view source)

Revision as of 12:43, 27 September 2022

1,052 bytes added ,  12:43, 27 September 2022
no edit summary
Line 138: Line 138:  
[[File:Tinciface.png]]
 
[[File:Tinciface.png]]
   −
<!--===End-client to end-client example===
+
===End-client to end-client example===
 
----
 
----
 
We’ll continue with our previous configurations.
 
We’ll continue with our previous configurations.
 +
 +
* Update your host file in hosts/ by adding your LAN network.
 +
 +
hosts/rut1 file:
 +
 +
[[File:Tinchosts1.png]]
 +
 +
hosts/rut2 file:
 +
 +
[[File:Tinchosts2.png]]
 +
 +
* Add a route to other’s device LAN network through your tinc interface:
 +
Add a line to your tinc-up script, so that a route will be added when tinc is started.
 +
on rut1 example/tinc-up
 +
 +
[[File:Tincup1.png]]
 +
 +
on rut2 example/tinc-up
 +
 +
[[File:Tincup2.png]]
 +
 +
* However, you’ll only be able to reach each other’s device LAN IP, but not the end devices. Therefore you need to change firewall rules.
 +
 +
'''FIREWALL'''
 +
* To achieve end-to-end client communication you need to configure the tinc zone, that was created at the installation.
 +
* Both routers should have identical zone configurations:
 +
 +
[[File:Tincfw2.png]]
 +
 +
We are going to allow all forwards via this interface, including lan and wan networks into this zone. This way we can communicate from END1 to RUT2’s lan as well as END2 and vice versa.
 +
In short '''LAN1 <-> WAN1 <-''' through tinc tunnel '''-> WAN2 <-> LAN2'''
 +
 +
[[File:TincTopology3.png]]
Retrieved from "https://wiki.teltonika-networks.com/view/Special:MobileDiff/96195"

Navigation menu