[Nix-commits] [NixOS/charon] 86bbc9: Automatically set up encrypted links between machi...

Eelco Dolstra Fri, 25 May 2012 15:47:01 -0700

  Branch: refs/heads/master
  Home:   https://github.com/NixOS/charon
  Commit: 86bbc9a508c4a7c8d4ab7426b08d412c81e525e1
      
https://github.com/NixOS/charon/commit/86bbc9a508c4a7c8d4ab7426b08d412c81e525e1
  Author: Eelco Dolstra <[email protected]>
  Date:   2012-05-25 (Fri, 25 May 2012)


  Changed paths:
    M charon/backends/__init__.py
    M charon/backends/ec2.py
    M charon/deployment.py
    A examples/encryption-test.nix
    M nix/eval-machine-info.nix
    M nix/options.nix
    A nix/ssh-tunnel.nix

  Log Message:
  -----------
  Automatically set up encrypted links between machines

A Charon machine can set the configuration option
‘deployment.encryptedLinksTo’ to specify a set of machines to which an
encrypted peer-to-peer link should be created automatically.  This
generalizes the hacky support for inter-region tunnels in the EC2
backend.  For instance, if machine "proxy" has

   deployment.encryptedLinksTo = [ "backend1" "backend2" ];

then a VPN link over SSH will be automatically set up between "proxy"
and "backend1", and "proxy" and "backend2".  /etc/hosts is set up so a
machine name refers to the encrypted link if available, or the
unencrypted link otherwise; "<NAME>-unencrypted" and
"<NAME>-encrypted" refer to the unencrypted and encrypted links,
respectively.

Fixes #33.

_______________________________________________
nix-commits mailing list
[email protected]
http://lists.science.uu.nl/mailman/listinfo/nix-commits

[Nix-commits] [NixOS/charon] 86bbc9: Automatically set up encrypted links between machi...

Reply via email to