… | |
… | |
4 | |
4 | |
5 | =head1 SYNOPSIS |
5 | =head1 SYNOPSIS |
6 | |
6 | |
7 | C<gvpe> [B<-cDlL>] [B<--config=>I<DIR>] [B<--no-detach>] [B<-l=>I<LEVEL]>] |
7 | C<gvpe> [B<-cDlL>] [B<--config=>I<DIR>] [B<--no-detach>] [B<-l=>I<LEVEL]>] |
8 | [B<--kill>[B<=>I<SIGNAL>]] [B<--mlock>] [B<--help>] [B<--version>] |
8 | [B<--kill>[B<=>I<SIGNAL>]] [B<--mlock>] [B<--help>] [B<--version>] |
9 | I<NODENAME> |
9 | I<NODENAME> [I<option...>] |
10 | |
10 | |
11 | =head1 DESCRIPTION |
11 | =head1 DESCRIPTION |
12 | |
12 | |
13 | See the gvpe(5) manpage for an introduction to the gvpe suite. |
13 | See the gvpe(5) man page for an introduction to the gvpe suite. |
14 | |
14 | |
15 | This is the manual page for gvpe, the virtual private ethernet daemon. |
15 | This is the manual page for gvpe, the virtual private ethernet daemon. |
16 | When started, C<gvpe> will read it's configuration file to determine the |
16 | When started, C<gvpe> will read it's configuration file to determine the |
17 | network topology, and other configuration information, assuming the role |
17 | network topology, and other configuration information, assuming the role |
18 | of node I<NODENAME>. It will then connect to the tun/tap device and set |
18 | of node I<NODENAME> |
|
|
19 | |
|
|
20 | It will then create/connect to the tun/tap device and set up a socket for |
19 | up a socket for incoming connections. Then a script will be executed to |
21 | incoming connections. Then a C<if-up> script will be executed to further |
20 | further configure the virtual device. If that succeeds, it will detach |
22 | configure the virtual network device. If that succeeds, it will detach |
21 | from the controlling terminal and continue in the background, accepting |
23 | from the controlling terminal and continue in the background, accepting |
22 | and setting up connections to other gvpe daemons that are part of the |
24 | and setting up connections to other gvpe daemons that are part of the |
23 | virtual private ethernet. |
25 | same virtual private ethernet. |
|
|
26 | |
|
|
27 | The optional arguments after the node name have to be of the form: |
|
|
28 | |
|
|
29 | [I<nodename>.]var=value |
|
|
30 | |
|
|
31 | If the argument has a prefix of C<nodename.> |
|
|
32 | (i.e. C<laptop.enable-dns=yes>) then it will be parsed after all the |
|
|
33 | config directives for that node, if not, it is parsed before the first |
|
|
34 | node directive in the config file, and can be used to set global options |
|
|
35 | or default variables. |
|
|
36 | |
|
|
37 | For example, to start C<gvpe> in the foreground, with log-level C<info> on |
|
|
38 | the node C<laptop>, with TCP enabled and HTTP-Proxy host and Port set, use |
|
|
39 | this: |
|
|
40 | |
|
|
41 | gvpe -D -l info laptop \ |
|
|
42 | http-proxy-host=10.0.0.18 http-proxy-port=3128 \ |
|
|
43 | laptop.enable-tcp=yes |
24 | |
44 | |
25 | =head1 OPTIONS |
45 | =head1 OPTIONS |
26 | |
46 | |
27 | =over 4 |
47 | =over 4 |
28 | |
48 | |
… | |
… | |
44 | Don't fork and detach but stay in foreground and log messages to stderr in |
64 | Don't fork and detach but stay in foreground and log messages to stderr in |
45 | addition to syslog. |
65 | addition to syslog. |
46 | |
66 | |
47 | =item B<-L>, B<--mlock> |
67 | =item B<-L>, B<--mlock> |
48 | |
68 | |
49 | Lock C<gvpe> into main memory. This will prevent sensitive data like |
69 | Lock C<gvpe> into main memory. This will prevent sensitive data like |
50 | shared private keys to be written to the system swap files/partitions. |
70 | shared private keys to be written to the system swap files/partitions. |
51 | |
71 | |
52 | =item B<--version> |
72 | =item B<--version> |
53 | |
73 | |
54 | Output version information and exit. |
74 | Output version information and exit. |
… | |
… | |
113 | =head1 BUGS |
133 | =head1 BUGS |
114 | |
134 | |
115 | The cryptography in gvpe has not been thoroughly checked by many people |
135 | The cryptography in gvpe has not been thoroughly checked by many people |
116 | yet. Use it at your own risk! |
136 | yet. Use it at your own risk! |
117 | |
137 | |
118 | If you find any bugs, report them to C<gvpe@plan9.de>. |
138 | If you find any bugs, report them to C<gvpe@schmorp.de>. |
119 | |
139 | |
120 | =head1 SEE ALSO |
140 | =head1 SEE ALSO |
121 | |
141 | |
122 | gvpe(5) for an introduction, gvpe.conf(5), gvpectrl(8). |
142 | gvpe(5) for an introduction, gvpe.conf(5), gvpectrl(8). |
123 | |
143 | |
|
|
144 | The GVPE mailing list, at L<http://lists.schmorp.de/> or |
|
|
145 | C<gvpe@lists.schmorp.de>. |
|
|
146 | |
124 | gvpe comes with ABSOLUTELY NO WARRANTY. This is free software, and you are |
147 | GVPE comes with ABSOLUTELY NO WARRANTY. This is free software, and you are |
125 | welcome to redistribute it under certain conditions; see the file COPYING |
148 | welcome to redistribute it under certain conditions; see the file COPYING |
126 | for details. |
149 | for details. |
127 | |
150 | |
128 | =head1 AUTHOR |
151 | =head1 AUTHOR |
129 | |
152 | |
130 | Marc Lehmann C<< <gvpe@plan9.de> >>. |
153 | Marc Lehmann C<< <gvpe@schmorp.de> >>. |
131 | |
154 | |
132 | And thanks to many others for their contributions to gvpe, especially the |
155 | And thanks to many others for their contributions to gvpe, especially the |
133 | tincd authors, who inspired me to write this program (after scavenging |
156 | tincd authors, who inspired me to write this program (after scavenging |
134 | their sourcecode ;). |
157 | their source code ;). |
135 | |
158 | |