Scroll to navigation

FREELAN(1) User Commands FREELAN(1)

NAME

freelan - peer-to-peer VPN

DESCRIPTION

Generic options:

Produce help message.
Get the program version.
Enables debug output.
The number of threads to use.
The configuration file to use.

Configuration:

Configuration:

FreeLAN Secure Channel Protocol (FSCP) options:

The hostname resolution protocol to use.

--fscp.listen_on arg (=0.0.0.0:12000) The endpoint to listen on.

The endpoint to listen on.
The default timeout for HELLO messages, in milliseconds.
The address of an host to contact.
Whether to accept CONTACT-REQUEST messages.
Whether to accept CONTACT messages.
The certificate of an host to dynamically contact.
A network address to avoid when dynamically contacting hosts.
A cipher suite to allow.
A elliptic curve to allow.
Enable UPnP.
Maximum unauthenticated messages from one host per second.

Security options:

A passphrase to generate the pre - shared key from.
The salt to use during the pre-shared key derivation.
The number of iterations to use during the pre-shared key derivation.
The certificate file to use for signing.
The private key file to use for signing.
The certificate validation method.
The certificate validation script to use.
An authority certificate file to use.
The certificate revocation validation method.
A certificate revocation list file to use.

Tap adapter options:

The TAP adapter type.
Whether to enable the tap adapter.
The name of the tap adapter to use or create.
The MTU of the tap adapter.
The MSS override.
The metric of the tap adapter.
The tap adapter IPv4 address and prefix length.
The tap adapter IPv4 DHCP status.
The tap adapter IPv6 address and prefix length.

--tap_adapter.remote_ipv4_address arg The tap adapter IPv4 remote address.

Whether to enable the ARP proxy.
The ARP proxy fake ethernet address.
Whether to enable the DHCP proxy.
The DHCP proxy server IPv4 address and prefix length.
The DHCP proxy server IPv6 address and prefix length.
The tap adapter up script.
The tap adapter down script.

Switch options:

--switch.routing_method arg (=switch) The routing method for messages.

--switch.relay_mode_enabled arg (=no) Whether to enable the relay mode.

Router options:

A route to advertise to the other peers.
A DNS server to advertise to the other peers.
Whether to enable client routing.
Whether to accept routes requests.
The internal route acceptance policy.
The system route acceptance policy.
The maximum count of routes to accept for a given host.
The DNS servers acceptance policy.
The DNS script.

FreeLAN Client options:

Whether to enable the client mechanism.
The endpoint to connect to.
The protocol to use to contact the server.
Whether to disable peer verification.
Whether to disable host verification.
The client username.
The client password.
A hostname or IP address to advertise.

Daemon:

Do not run as a daemon.
Always log to syslog (useful when running with --foreground on OSX with launchd).
A pid file to use.

Miscellaneous:

Disable color output.

SEE ALSO

The full documentation for freelan is maintained as a Texinfo manual. If the info and freelan programs are properly installed at your site, the command

info freelan

should give you access to the complete manual.

January 2020 freelan 2.2.0 (2.2) Sun 12 Jan 2020