1 | =head1 NAME |
1 | =head1 NAME |
2 | |
2 | |
3 | vped.conf - vpe daemon configuration file |
3 | vped.conf - configuration file for the GNU VPE daemon |
4 | |
4 | |
5 | =head1 SYNOPSIS |
5 | =head1 SYNOPSIS |
6 | |
6 | |
|
|
7 | enable-udp = yes |
7 | udp-port = 407 |
8 | udp-port = 407 |
8 | mtu = 1492 |
9 | mtu = 1492 |
9 | ifname = vpn0 |
10 | ifname = vpn0 |
10 | |
11 | |
11 | node = branch1 |
12 | node = branch1 |
… | |
… | |
163 | interface MAC to this value. You will most likely use one of these: |
164 | interface MAC to this value. You will most likely use one of these: |
164 | |
165 | |
165 | ip link set $IFNAME address $MAC mtu $MTU up # GNU/Linux |
166 | ip link set $IFNAME address $MAC mtu $MTU up # GNU/Linux |
166 | ifconfig $IFNAME ether $MAC mtu $MTU up # FreeBSD |
167 | ifconfig $IFNAME ether $MAC mtu $MTU up # FreeBSD |
167 | |
168 | |
|
|
169 | Please see the C<vpe.osdep(5)> manpage for platform-specific information. |
|
|
170 | |
168 | =item IFTYPE=native |
171 | =item IFTYPE=native # or tincd |
169 | |
172 | |
170 | =item IFSUBTYPE=linux # or freebsd, darwin etc.. |
173 | =item IFSUBTYPE=linux # or freebsd, darwin etc.. |
171 | |
174 | |
172 | The interface type (C<native> or C<tincd>) and the subtype (usually the os |
175 | The interface type (C<native> or C<tincd>) and the subtype (usually the os |
173 | name in lowercase) that this vpe was configured for. Can be used to select |
176 | name in lowercase) that this vpe was configured for. Can be used to select |
… | |
… | |
215 | =item DESTIP=188.13.66.8 |
218 | =item DESTIP=188.13.66.8 |
216 | |
219 | |
217 | The numerical IP address of the remote host (vped accepts connections from |
220 | The numerical IP address of the remote host (vped accepts connections from |
218 | everywhere, as long as the other host can authenticate itself). |
221 | everywhere, as long as the other host can authenticate itself). |
219 | |
222 | |
220 | =item DESTPORT=407 # deprecated |
223 | =item DESTPORT=655 # deprecated |
221 | |
224 | |
222 | The UDP port used by the other side. |
225 | The UDP port used by the other side. |
223 | |
226 | |
224 | =item STATE=UP |
227 | =item STATE=UP |
225 | |
228 | |
… | |
… | |
277 | |
280 | |
278 | The optional login and password used to authenticate to the proxy server, |
281 | The optional login and password used to authenticate to the proxy server, |
279 | seperated by a literal colon (C<:>). Only basic authentication is |
282 | seperated by a literal colon (C<:>). Only basic authentication is |
280 | currently supported. |
283 | currently supported. |
281 | |
284 | |
|
|
285 | =item pid-file = path |
|
|
286 | |
|
|
287 | The path to the pid file to check and create (Default: |
|
|
288 | |
282 | =back |
289 | =back |
283 | |
290 | |
284 | =head2 NODE SPECIFIC SETTINGS |
291 | =head2 NODE SPECIFIC SETTINGS |
285 | |
292 | |
286 | The following settings are node-specific, that is, every node can have |
293 | The following settings are node-specific, that is, every node can have |
… | |
… | |
290 | |
297 | |
291 | =over 4 |
298 | =over 4 |
292 | |
299 | |
293 | =item udp-port = port-number |
300 | =item udp-port = port-number |
294 | |
301 | |
295 | Sets the port number used by the UDP protocol (default: C<407>, not |
302 | Sets the port number used by the UDP protocol (default: C<655>, not |
296 | officially assigned by IANA!). |
303 | officially assigned by IANA!). |
297 | |
304 | |
298 | =item tcp-port = port-number |
305 | =item tcp-port = port-number |
299 | |
306 | |
300 | Similar to C<udp-port> (default: C<407>), but sets the TCP port number. |
307 | Similar to C<udp-port> (default: C<655>), but sets the TCP port number. |
301 | |
308 | |
302 | =item enable-rawip = yes|true|on | no|false|off |
309 | =item enable-rawip = yes|true|on | no|false|off |
303 | |
310 | |
304 | Enable the RAW IPv4 transport using the C<ip-proto> protocol |
311 | Enable the RAW IPv4 transport using the C<ip-proto> protocol |
305 | (default: C<no>). This is the best choice, since the overhead per packet |
312 | (default: C<no>). This is the best choice, since the overhead per packet |
306 | is only 38 bytes, as opposed to UDP's 58 (or TCP's 60+). |
313 | is only 38 bytes, as opposed to UDP's 58 (or TCP's 60+). |
307 | |
314 | |
308 | =item enable-udp = yes|true|on | no|false|off |
315 | =item enable-udp = yes|true|on | no|false|off |
309 | |
316 | |
310 | Enable the UDPv4 transport using the C<udp-port> port |
317 | Enable the UDPv4 transport using the C<udp-port> port (default: C<yes>, |
311 | (default: C<yes>). This is a good general choice since UDP tunnels well |
318 | but this will change!). This is a good general choice since UDP tunnels |
312 | through many firewalls. |
319 | well through many firewalls. |
|
|
320 | |
|
|
321 | NOTE: Please specify C<enable-udp = yes> even though it is the default, as |
|
|
322 | some future version will have all protocols disabled by default. |
313 | |
323 | |
314 | =item enable-tcp = yes|true|on | no|false|off |
324 | =item enable-tcp = yes|true|on | no|false|off |
315 | |
325 | |
316 | Enable the TCPv4 transport using the C<tcp-port> port |
326 | Enable the TCPv4 transport using the C<tcp-port> port |
317 | (default: C<no>). Support for this horribly unsuitable protocol is only |
327 | (default: C<no>). Support for this horribly unsuitable protocol is only |