[Noisebridge-discuss] Agora Link Service
Jonathan Lassoff
jof at thejof.com
Wed Jan 27 09:08:24 UTC 2010
Excerpts from Eric Michaud's message of Tue Jan 26 15:52:22 -0800 2010:
> Huh,
>
> It says on the node list that Noisebridge has been assigned 10.100.4.0/23range.
>
> [noisebridge]
> gatewayhost=pony.noisebridge.net
> network=10.100.4.0/23
>
> Scroll down https://www.vpn.hamburg.ccc.de/tinc-chaosvpn.txt
Ah, I see. This content isn't well linked, it seems.
Cool, so this looks like a point-to-multipoint IPv4 L3VPN using tinc.
Looks like there's some configuration on pony, but it's not fully setup.
Eric, did you set that up? Want me to get it working?
I've not worked with this chaosvpn setup in the past, but it looks like
they have a perl script to pull a tinc config periodically.
One thing that comes to mind though: should this be routed through pony
and the same internal network that everyone at 2169 uses?
Currently, the local DHCP daemon points people's default routes at the
router in the Soekris host. We could enable forwarding and firewalling
on pony and point the Soekris' routes for ChaosVPN IP space at pony's
internal IP, and this could all "just work" (well, "just route").
But should pony be reachable via the ChaosVPN and should internal users
be able to NAT to some ChaosVPN IP space for things within this
darknet/VPN?
Alternatively, we could create a separate layer-2 / switch network to
connect users to this VPN network.
What do people on the list think? Would you like to have tunneled IP
connectivity to other hackerspaces while you're at 2169?
Cheers,
jonathan
More information about the Noisebridge-discuss
mailing list