nigger/lixonet-ee
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
113 Commits 1 Branch 0 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
sump pump 2cdaf725fd Update README.md
2020-05-20 20:52:51 +00:00
bird
Update bird/bird.conf.tmpl
2020-04-28 05:15:32 +00:00
tinc/lixonet
Update tinc/lixonet/tinc.conf.tmpl
2020-04-28 05:46:51 +00:00
.gitignore
Update docker-compose.yml, .gitignore files
2020-04-27 20:05:22 +00:00
build.sh
Initial commit to get Bird working
2020-04-28 04:16:29 +00:00
docker-compose.yml
Update docker-compose.yml
2020-04-27 22:58:36 +00:00
Dockerfile
Update Dockerfile
2020-04-27 20:12:08 +00:00
Dockerfile.tinc
Update Dockerfile.tinc, tinc/lixonet/tinc.conf.tmpl files
2020-04-28 00:58:16 +00:00
README.md
Update README.md
2020-05-20 20:52:51 +00:00
version
Add lixonet main docker container
2020-04-27 19:55:27 +00:00

README.md

Lixonet Enterprise Edition (LIXONET 3)

This is the semi-official, testing Lixonet EE repository.

Custom configurations should be supplied in a lixonet.conf file in the name=value format, such as your subnet. Additionally, a tinc keypair is also be required.

Generating keypairs for tinc (tinc.key):

Source: https://www.tinc-vpn.org/documentation/Generating-keypairs.html

Run: tincd -n lixonet -K

Configuration options

All options are supplied in the name=value format on individual lines, i.e. name=test_name_lixo

  • name - The global neighbor name. Tinc and Bird use this to identify a peer in the network, and to exclude your own pre-packed config automagically from Tinc and BIRD dialing out so you don't connect to yourself over and over again.
  • address - The router address to use. This is your Lixonet routing layer address: 172.xxx.0.xxx
  • asn - The BGP ASN to use. We usually follow the format 4206969XXX where XXX is the last octet of your address, zero-padded (i.e. 008 or 212)
  • netmask - The routing layer netmask to use. This should be 255.255.255.0 in most cases as our routing layer has always been a ``/24` subnet. Used by Tinc and BIRD for the L2 mesh and route security ingress filtering respectively.
  • tinc_bind_address - OPTIONAL: The address that Tinc should bind to to listen for incoming WAN-sided connections (i.e. 10.0.0.1). This is not the tunnel IP.
  • tinc_connect_to - OPTIONAL: A comma-separated list of well-known/pre-defined hosts to connect to (i.e. denco_mane_lixo). If not supplied, this is automatically set to all core routers that aren't yourself (name).

Setup

Prerequisites:

  1. docker and docker-compose (Alpine: community repository; https://docs.genesys.com/Documentation/System/8.5.x/DDG/InstallationofDockeronAlpineLinux), git, and curl are installed (Alpine: apk add)
  2. eth0 is the LAN or WAN interface supporting external routing, DNS, etc., and is the birdged interface to a router that will statically route the entire desired network subnet (i.e. x.x.0.0/16) through it
  3. tun and tap are in /etc/modules to load at boot (https://www.cyberciti.biz/faq/linux-how-to-load-a-kernel-module-automatically-at-boot-time/)
  4. sigil is installed (curl -L "https://github.com/gliderlabs/sigil/releases/download/v0.5.0/sigil_0.5.0_$(uname -sm|tr ' ' '_').tgz" | tar -zxC /usr/local/bin)

Install:

  1. Clone this repository: git clone
  2. mkdir /etc/lixonet/
  3. Fill out /etc/lixonet/lixonet.conf (see: Configuration options)
  4. Supply /etc/lixonet/tinc.key
  5. Run chmod +x build.sh && ./build.sh to deploy the stack on Docker.
Description
No description provided
Readme 498 KiB
Languages
Shell 96.6%
Dockerfile 3.4%