blob: ea976c55f0b7ede7a0617c5f0844e1cc4dad378a (
plain)
| 1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
 | The Dotcloud provided by duostack.com is a application development platform
for simple deployment of your stuff.
It also provides an ssh-interface via:
<code>
  dotcloud ssh project.module
</code>
to be able to use it without the hassle of going through the api, you will
need to create an own dsa-key for ssh to use and deploy this public key on
the machine
<code>
  ssh-keygen -t dsa -f dotcloud_project.dss
  cat dotcloud_project.dss.pub (copy the contents to the dotclouds 
  ~/.ssh/authorized_keys2)
</code>
find your dotcloud host ip via 
<code>
  dotcloud info project.module
</code>
You will gain a user shell with
<code>
  ssh dotcloud@module.project -p 5960
</code>
we will need to build some stuff in order to get a working copy of tinc.
Everything needs to be done in userspace.
<code>
  mkdir build
  cd build
  curl http://www.openssl.org/source/openssl-1.0.0d.tar.gz | tar xz
  cd openssl-1.0.0d
  ./config --prefix=$HOME/usr -fPIC
  make install
  cp lib* $HOME/usr/lib
  cd ..
  curl http://www.oberhumer.com/opensource/lzo/download/lzo-2.04.tar.gz | tar xz
  cd lzo-2.04
  ./configure --prefix=$HOME/usr
  curl http://zlib.net/zlib-1.2.5.tar.gz | tar xz
  cd zlib-1.2.5/
  ./configure --prefix=$HOME/usr
  make install
</code>
before building we need to patch the tinc daemon to run without the need
for a tun device.
tutorial is here:
https://hackerspace.be/TincVPN
<code>
  curl http://www.tinc-vpn.org/packages/tinc-1.0.14.tar.gz | tar xz
  cd tinc-1.0.14
  #replace the device.c with the patched (empty) one from the webpage
  ./configure --prefix=$HOME/usr --sysconfdir=$HOME/etc \
    --localstatedir=$HOME/var --with-openssl=`pwd`/../openssl-1.0.0d/ \
    --with-openssl-lib=`pwd`/../openssl-1.0.0d/ \
    --with-zlib-include=$HOME/usr/include --with-zlib-lib=$HOME/usr/lib
  make
  make install
  mkdir ~/etc
  mkdir -p ~/var/run
  cd ~/painload/retiolum/scripts/tinc_setup
  ./install  cloudkrebs 10.7.7.221
</code>
be sure to fix the portnumber in the generated host file and add your own
address in hosts/cloudkrebs:
<code>
  Address = my.public.address
  Port = 1655
  PUBKEY
</code>
also write the right in tinc.conf:
<code>
  Name = cloudkrebs
  Mode = switch
  #device = ...
  # no device :)
</code>
 |