ThrockNet

This page is historical only. ThrockNET died a few years ago as we moved out of the dorms and lost the high speed LAN connections this ran on top of

ThrockNet is a system of IPSec tunnels designed to allow my friends and I to securely connect our computers using horribly insecure protocols like NFS. The tunnels also allow us to directly access the internal networks of the other members. Currently all the nodes run UNIX with KAME IPSec tools although this is not a requirement. Each node is able to make it's own decision about who has access and who doesn't. Currently the network is IPv4, but if someone goes through the effort of setting up IPv6 I'm more than willing to post that here.

Getting on ThrockNet is kind of a pain, but it is getting easier. Currently there are the following steps:

1. Pick the lowest /24 out of the 10.0.0.0/8 netblock that isn't currently used (currently 10.0.7.0/24) and re-number your LAN into it. While not strictly necessary this makes it easier to setup access control in various servers
2. Generate an x509 certificate for your server and download our CA cert
3. Send me the netblock you used, and your public IP address or hostname.
4. My information is tesla.resnet.mtu.edu (141.219.72.128) and 10.0.3.0/24
5. Configure the tunnels.