[avahi] breaking avahi through vpn

Max Kutny mkutny at gmail.com
Sun Feb 12 05:33:22 PST 2006

On 2/12/06, Lennart Poettering <lennart at poettering.net> wrote:
> On Sun, 12.02.06 01:39, Max Kutny (mkutny at gmail.com) wrote:
> > What's the rationale behind skipping POINTOPOINT interfaces? Could it
> > be possible to make avahi more VPN friendly?
> Secondly, mDNS is designed to be used in "trusted" networks
> only. There is a big chance that interfaces with the POINTOPOINT bit
> set are directed to the internet (PPP of some kind), hence we try to
> avoid them like the devil the holy water.

Exactly opposed to my case where VPN secures public LAN.

Although, PPP differs from VPN tunnels so it probably may be possible
to distinguish them:
3: ppp0: <POINTOPOINT,MULTICAST,NOARP,UP> mtu 1500 qdisc pfifo_fast qlen 3
7: tun0: <POINTOPOINT,MULTICAST,NOARP,UP> mtu 1500 qdisc pfifo_fast qlen 100

> If you're feeling lucky you can enable mDNS over pointopoint links by
> commenting the line containing "IFF_POINTOPOINT" in
> avahi-core/iface-linux.c and recompiling.

Thanks! I'll try to go with that.

-- Max

More information about the avahi mailing list