3 .\" Manual for the watch service
5 .\" (c) 2008 Straylight/Edgeware
8 .\"----- Licensing notice ---------------------------------------------------
10 .\" This file is part of Trivial IP Encryption (TrIPE).
12 .\" TrIPE is free software; you can redistribute it and/or modify
13 .\" it under the terms of the GNU General Public License as published by
14 .\" the Free Software Foundation; either version 2 of the License, or
15 .\" (at your option) any later version.
17 .\" TrIPE is distributed in the hope that it will be useful,
18 .\" but WITHOUT ANY WARRANTY; without even the implied warranty of
19 .\" MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
20 .\" GNU General Public License for more details.
22 .\" You should have received a copy of the GNU General Public License
23 .\" along with TrIPE; if not, write to the Free Software Foundation,
24 .\" Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
26 .\"--------------------------------------------------------------------------
27 .so ../defs.man.in \"@@@PRE@@@
29 .\"--------------------------------------------------------------------------
30 .TH tripe-ifup 8 "20 December 2008" "Straylight/Edgeware" "TrIPE: Trivial IP Encryption"
32 .\"--------------------------------------------------------------------------
35 tripe-ifup \- configure VPN network interfaces and routes
37 .\"--------------------------------------------------------------------------
46 .\"--------------------------------------------------------------------------
51 program configures network interfaces and routes for
53 It expects a number of values to be passed as environment variables. It
54 is usually invoked by the
56 service, which provides values for these environment variables by
57 consulting the peer database
59 These parameters are therefore described in terms of their keys in the
60 peer's database record; the corresponding environment variable name is
61 formed by converting letters to uppercase and prefixing with
64 The command-line arguments are as follows.
67 The name of the peer, as known to the
69 server and various services. This is used to notify the server of
70 changes, and to announce final success.
73 The current name of the interface, as known to the kernel.
75 .IR address-family " and " addr
76 The address, in the format described in
80 address family is supported.
82 In the following, a name in
84 is used to represent the value of the correspondingly named key in the
85 peer's record. For example,then
87 denotes the value assigned to the
93 The network interface is configured as follows.
95 The network interface name is set. If
97 is set, then the network interface is renamed to
101 command is issued to keep the server informed. Further configuration is
102 performed using the new interface name.
104 Configure the interface addresses. If
106 is set, it should be a space-separated list of IPv4 and IPv6 addresses:
107 there may be any number of either.
110 is set, it should be an IPv4 and/or an IPv6 address, separated by space:
111 these are the addresses to configure as the remote end point of the
112 point-to-point link. (Further remote addresses can be configured as
113 host routes: see below.) IPv4 addresses are expected to be in
114 dotted-quad form; IPv6 addresses should be in RFC4291 hex-and-colons
117 Establish routes. If addresses were configured, and
121 is split into space-separated networks. For each network, of the form
122 .IB address / mask \fR,
123 a route is configured to the given network, via the remote address of
124 the link, over the tunnel interface. The
126 may be IPv4 or IPv6 addresses. If the interface has only an IPv4
127 address then IPv6 routes will be ignored, and
130 Configure the interface MTU and bring it up. The
131 interface MTU is configured based on the path MTU to the peer's external
132 address and the cryptographic algorithms in use by the
134 server; this can be overridden by setting the
140 is set, it is interpreted as a Bourne shell command and evaluated.
142 Notify services. A notification
145 .B USER tripe-ifup configured
151 .\"--------------------------------------------------------------------------
158 .\"--------------------------------------------------------------------------
161 Mark Wooding, <mdw@distorted.org.uk>
163 .\"----- That's all, folks --------------------------------------------------