[hippotat] / README.config

-*- Fundamental -*-

Sections

  [<servername> - <client>]
  [<client>]
  [<servername>]      often [SERVER]
  [COMMON]

Keys are looked up in that order, unless otherwise specified.
<client> is the client's virtual address.
<servername> must be a valid DNS hostname and not look like an address.

Exceptional settings:

  server
     Specifies <servername>.
     Is looked up in [SERVER] and [COMMON] only.
     If not specified there, it is SERVER.

     Used by server to select the appropriate parts of the
     rest of the configuration.  Ignored by the client.

  password
     Looked up in the usual way, but used by client and server to
     determine which possible peerings to try to set up, and which to
     ignore.

     We define the sets of putative clients and servers, as follows:
     all those, for which there is any section (even an empty one)
     whose name is based on <client> or <servername> (as applicable).
     (LIMIT sections do not count.)

     The server queue packets for, and accept requests from, each
     putative client for which the config search yields a password.

     Each client will create a local interface, and try to communicate
     with the server, for each possible pair (putative server,
     putative client) for which the config search yields a password.

  ipif
     Command to run to create and communicate with local network
     interface.  Passed to sh -c.  Must speak SLIP on stdin/stdout.
     The following additional interpolations aare substituted:
                       %(local)s  %(peer)s  %(rnet)s    %(ifname)s
          on server    <vaddr>    <vrelay>  <vnetwork>  <ifname_server>
          on client    <client>   <vaddr>   <vroutes>   <ifname_client>
     ["userv root ipif %(local)s,%(peer)s,%(mtu)s,slip %(rnets)s"]

     On server: applies to all clients; not looked up in
      client-specific sections.
     On client: may be different for different servers.

Capped settings:

     Values in [<server> LIMIT] and [LIMIT] are a cap (maximum) on
     those from the other sections (including COMMON).

  max_batch_down
     Size limit for response payloads (used by server only)
     [65536 bytes; LIMIT: 262144 bytes]

  max_queue_time
     Discard packets after they have been queued this long waiting
     for http.
     On server: setting applies to downward packets, and is capped
      by LIMIT values.
     On client: setting applies to upward packets, and is
      not affected by LIMIT values.
     [10 s; LIMIT: 121 s]

  http_timeout
     On server: return with empty payload any http request oustanding
      for this long
     On client: give up on any http request outstanding for
      for this long plus http_timeout_grace
     Client's effective timeout must be at least server's (checked).
     [30 s; LIMIT: 121]

  target_requests_outstanding   
     On server: whenever number of outstanding requests for
      a client exceeds this, return oldest with empty payload
     On client: try to keep this many requests outstanding.
     Must match between client and server (checked).
     [3; LIMIT: 10]

Ordinary settings, used by both, not client-specific:

    These are not looked up in the client-specific config sections.

  addrs
     Public IP (v4 or v6) address(es) of the server;
     space-separated.
     On server: mandatory; used for bind.  No default.
     On client: used only to construct default url.

  vnetwork
     Private network range (<prefix>/<length>).  Must contain all
     <client>s.  Must contain <vaddr> and <vrelay>, and used
     to compute their defaults.  [172.24.230.192/28]

  vaddr
     Address of server's virtual interface.

  vrelay
     Virtual point-to-point address used for tunnel routing
     (does not appear in packets).
     [first host entry in <vnetwork> other than <vaddr>,
      so 172.24.230.194]

  port
     Public port number of the server.  [80]
     On server: used for bind.
     On client: used only to construct default url.

  mtu
     Must match exactly.  (UNCHECKED) [1500 bytes]

  ifname_server
     Virtual interface name on the server.  [shippo%d]
  ifname_client
     Virtual interface name on the client.  [hippo%d]
     Any %d is interpolated (by the kernel).

Ordinary settings, used by client only:

  http_timeout_grace
     See http_timeout.  [5 s]

  max_requests_outstanding
     Client will hold off sending more requests than this to
     server even if it has data to send.  [6]

  max_batch_up
     Size limit for request payloads. [4000 bytes]

  http_retry
     If a request fails, wait this long before considering it
     "finished" - to limit rate of futile requests.  [5 s]

  url
     Public url of server.
     [http://<first-entry-in-addrs>:<port>/]

  vroutes
     Virtual addresses (in CIDR syntax) to be found at the server
     end, space-separated.  Routes to those will be created on
     the client.  [""]
Commit	Line	Data
abb06ac1 IJ	1	-- Fundamental --
	2
	3	Sections
	4
c7fb640e	5	[<servername> - <client>]
9e445690	6	[<client>]
c66915fd	7	[<servername>] often [SERVER]
71f9ddb6	8	[COMMON]
abb06ac1	9
c7fb640e	10	Keys are looked up in that order, unless otherwise specified.
9e445690	11	<client> is the client's virtual address.
c7fb640e	12	<servername> must be a valid DNS hostname and not look like an address.
abb06ac1 IJ	13
	14	Exceptional settings:
	15
	16	server
abb06ac1	17	Specifies <servername>.
71f9ddb6	18	Is looked up in [SERVER] and [COMMON] only.
abb06ac1 IJ	19	If not specified there, it is SERVER.
abb06ac1 IJ	20
9e445690 IJ	21	Used by server to select the appropriate parts of the
	22	rest of the configuration. Ignored by the client.
	23
abb06ac1	24	password
9e445690 IJ	25	Looked up in the usual way, but used by client and server to
	26	determine which possible peerings to try to set up, and which to
	27	ignore.
abb06ac1	28
9e445690 IJ	29	We define the sets of putative clients and servers, as follows:
	30	all those, for which there is any section (even an empty one)
	31	whose name is based on <client> or <servername> (as applicable).
c7fb640e	32	(LIMIT sections do not count.)
abb06ac1	33
9e445690 IJ	34	The server queue packets for, and accept requests from, each
9e445690 IJ	35	putative client for which the config search yields a password.
abb06ac1	36
9e445690 IJ	37	Each client will create a local interface, and try to communicate
	38	with the server, for each possible pair (putative server,
	39	putative client) for which the config search yields a password.
abb06ac1	40
c7fb640e IJ	41	ipif
	42	Command to run to create and communicate with local network
	43	interface. Passed to sh -c. Must speak SLIP on stdin/stdout.
	44	The following additional interpolations aare substituted:
d72f8360 IJ	45	%(local)s %(peer)s %(rnet)s %(ifname)s
	46	on server <vaddr> <vrelay> <vnetwork> <ifname_server>
	47	on client <client> <vaddr> <vroutes> <ifname_client>
c7fb640e IJ	48	["userv root ipif %(local)s,%(peer)s,%(mtu)s,slip %(rnets)s"]
	49
	50	On server: applies to all clients; not looked up in
	51	client-specific sections.
	52	On client: may be different for different servers.
	53
abb06ac1 IJ	54	Capped settings:
abb06ac1 IJ	55
c7fb640e	56	Values in [<server> LIMIT] and [LIMIT] are a cap (maximum) on
71f9ddb6	57	those from the other sections (including COMMON).
abb06ac1 IJ	58
abb06ac1 IJ	59	max_batch_down
c7fb640e IJ	60	Size limit for response payloads (used by server only)
c7fb640e IJ	61	[65536 bytes; LIMIT: 262144 bytes]
abb06ac1 IJ	62
abb06ac1 IJ	63	max_queue_time
f754eec4 IJ	64	Discard packets after they have been queued this long waiting
	65	for http.
	66	On server: setting applies to downward packets, and is capped
	67	by LIMIT values.
	68	On client: setting applies to upward packets, and is
	69	not affected by LIMIT values.
c7fb640e	70	[10 s; LIMIT: 121 s]
abb06ac1 IJ	71
abb06ac1 IJ	72	http_timeout
c7fb640e	73	On server: return with empty payload any http request oustanding
abb06ac1	74	for this long
c7fb640e	75	On client: give up on any http request outstanding for
abb06ac1 IJ	76	for this long plus http_timeout_grace
abb06ac1 IJ	77	Client's effective timeout must be at least server's (checked).
c7fb640e	78	[30 s; LIMIT: 121]
abb06ac1 IJ	79
abb06ac1 IJ	80	target_requests_outstanding
c7fb640e	81	On server: whenever number of outstanding requests for
abb06ac1	82	a client exceeds this, return oldest with empty payload
c7fb640e IJ	83	On client: try to keep this many requests outstanding.
	84	Must match between client and server (checked).
	85	[3; LIMIT: 10]
abb06ac1	86
c7fb640e	87	Ordinary settings, used by both, not client-specific:
abb06ac1	88
c7fb640e	89	These are not looked up in the client-specific config sections.
abb06ac1 IJ	90
	91	addrs
	92	Public IP (v4 or v6) address(es) of the server;
	93	space-separated.
c7fb640e IJ	94	On server: mandatory; used for bind. No default.
c7fb640e IJ	95	On client: used only to construct default url.
abb06ac1 IJ	96
	97	vnetwork
	98	Private network range (<prefix>/<length>). Must contain all
	99	<client>s. Must contain <vaddr> and <vrelay>, and used
	100	to compute their defaults. [172.24.230.192/28]
	101
	102	vaddr
	103	Address of server's virtual interface.
	104
	105	vrelay
	106	Virtual point-to-point address used for tunnel routing
	107	(does not appear in packets).
	108	[first host entry in <vnetwork> other than <vaddr>,
	109	so 172.24.230.194]
	110
	111	port
	112	Public port number of the server. [80]
c7fb640e IJ	113	On server: used for bind.
c7fb640e IJ	114	On client: used only to construct default url.
abb06ac1 IJ	115
abb06ac1 IJ	116	mtu
74934d63	117	Must match exactly. (UNCHECKED) [1500 bytes]
abb06ac1	118
d72f8360 IJ	119	ifname_server
	120	Virtual interface name on the server. [shippo%d]
	121	ifname_client
	122	Virtual interface name on the client. [hippo%d]
	123	Any %d is interpolated (by the kernel).
	124
abb06ac1 IJ	125	Ordinary settings, used by client only:
	126
	127	http_timeout_grace
	128	See http_timeout. [5 s]
	129
	130	max_requests_outstanding
	131	Client will hold off sending more requests than this to
	132	server even if it has data to send. [6]
	133
	134	max_batch_up
	135	Size limit for request payloads. [4000 bytes]
	136
	137	http_retry
	138	If a request fails, wait this long before considering it
	139	"finished" - to limit rate of futile requests. [5 s]
	140
	141	url
	142	Public url of server.
	143	[http://<first-entry-in-addrs>:<port>/]
	144
	145	vroutes
	146	Virtual addresses (in CIDR syntax) to be found at the server
	147	end, space-separated. Routes to those will be created on
	148	the client. [""]