[avahi] breaking avahi through vpn
Max Kutny
mkutny at gmail.com
Sun Feb 12 05:33:22 PST 2006
On 2/12/06, Lennart Poettering <lennart at poettering.net> wrote:
> On Sun, 12.02.06 01:39, Max Kutny (mkutny at gmail.com) wrote:
>
> > What's the rationale behind skipping POINTOPOINT interfaces? Could it
> > be possible to make avahi more VPN friendly?
>
> Secondly, mDNS is designed to be used in "trusted" networks
> only. There is a big chance that interfaces with the POINTOPOINT bit
> set are directed to the internet (PPP of some kind), hence we try to
> avoid them like the devil the holy water.
Exactly opposed to my case where VPN secures public LAN.
Although, PPP differs from VPN tunnels so it probably may be possible
to distinguish them:
3: ppp0: <POINTOPOINT,MULTICAST,NOARP,UP> mtu 1500 qdisc pfifo_fast qlen 3
link/ppp
7: tun0: <POINTOPOINT,MULTICAST,NOARP,UP> mtu 1500 qdisc pfifo_fast qlen 100
link/[65534]
> If you're feeling lucky you can enable mDNS over pointopoint links by
> commenting the line containing "IFF_POINTOPOINT" in
> avahi-core/iface-linux.c and recompiling.
Thanks! I'll try to go with that.
-- Max
More information about the avahi
mailing list