This time we are going to use Node C as our traffic aggregator.
You should already be familar with basic tinc configuration, as I described in this previous article - Configuring Tinc, an encrypted P2P VPN.
|Node A||Node B||Node C|
|VPN Network Name||PsychoVPN||PsychoVPN||PsychoVPN|
Create the working directory to store the configuration:
mkdir -p /etc/tinc/PsychoVPN/hosts && cd /etc/tinc/PsychoVPN
Start off with editing
Name = NodeC
tinc.conf on both Node A and B, so that they point only to Node C:
Name = NodeA
Name = NodeB
Create a host file for Node C:
Address = 220.127.116.11
Create a pair of keys (make sure to save both files under
tincd -n PsychoVPN -K 4096
Append the public key to
NodeC‘s host file.
cat rsa_key.pub >> hosts/NodeC
Now you can exchange the host file with Node A and Node B
scp /etc/tinc/PsychoVPN/hosts/NodeC <user>@<NodeA>:/etc/tinc/PsychoVPN/hosts/NodeC
It’s also required for Node C to have both Node A and Node B host files. To you reverse the
scp to download files from Node A and Node B directly from Node C:
scp <user>@<NodeA>:/etc/tinc/PsychoVPN/hosts/NodeA /etc/tinc/PsychoVPN/hosts/NodeA
You can also just copy the content of
hosts folder from a different node, saving you the hassle of double authentication:
scp <user>@<NodeA>:/etc/tinc/PsychoVPN/hosts/* /etc/tinc/PsychoVPN/hosts/
From this point just follow the previous instructions starting from #Control Scripts. Just remember to adjust the IP addresses correspondingly.