I wanted to make a proposal. I recently discovered, what I think, is a really cool piece of software - ZeroTier. Anybody played with it?

Its kinda of like a VPN, except it is way simpler to setup and configure and from the testing Ive done its pretty fast as well. A simple way to think of
how it works, is like a Virtual Ethernet Network crossed with VLANs and firewall like controls enabling you to connect to other hosts on the same virtual ethernet network without the complexities of installing and setup
VPNs, NATs and firewall tweaking.

TL;DR I have found it super easy to use, and didnt need to setup port forwarding, NAT or anything like that.

I know a while ago, we discussed that it would be great to employ security
to the network - as a way to hope reduce the impact of any compromise. With
the variety of software that we use on different platforms, that would be a
big task to implement. Well ZeroTier provides the security (between two systems, and only authorised systems if need) and in the IP network stack. So BBS software can continue to exchange "clear text" when they communicate with each other, zero tier will encrypt before sending it on the wire (to destination on the same work).

The immediate benefit I thought of, is that I can put my BBS (telnet/binkd, etc) onto the zerotier network, and anybody else in the network will be able
to communicate with me without any changes to their side (as long as they
join the network to). It also means I can remove the greater internet from connecting to those ports (the only folks who need to connect to my BINKD is you guys and your BBSes - so if you are in the network, you can :)
Naturally, I can still poll out to other BBSes which the nodes lists their IP address as on the greater internet.

The other benefit is it isnt an all of nothing approach. IE: If you still
want to allow the greater internet to connect, you can - and normal IP
routing will take care of that. (As well as connecting out ...)

Anyway, if any body is interested, Ive setup a ZeroTier network for BBS "traffic" - specifically to test on for FSXnet (and you shouldnt notice if
you dont use it).

If you want to test out this secure network, you need to download and install ZeroTier (from zerotier.com) - its free software (and while they have a cloud service that has a free and paid tier, Im not using that. There are versions for Linuxs, MAC and Windows - and if you are keen, even your IOS and Android devices.

Once you are installed, and running ZeroTier will generate an ID for your machine - itll be 10 hex chars - think of that as your "network address" (or
IP address in IP networks). Select "Join Network" and join this network ID: a47cf4a8c0001500. (If you are using an installation without a GUI, you would type "zerotier-cli info" to see your hex ID and "zerotier-cli join a47cf4a8c0001500" to join the network).

You can see whats happening by using "zerotier-cli listnetworks" (or in your gui), and youll see it change very quickly from requesting configuration to access denied.

Send me a message (reply to this or a netmail) with your 10 hex network ID
(its public and safe to share). Ill authorise you to join the network, and
once joined you be able to connect to both my BBSs on BINKP (24554) and
telnet (23) - inside the docker containers that they are in. Youll be able to connect via IPv6 and/or IPv4 - even though my BBSes are not publicly
available over IPv6. (In fact, only 1 of my BBSs is available with BINKP and the other is only available via telnet on port 10023).

Once I enable your connection, youll get an IPV6 address that I set as: fd00:0:f1d0:0:21:n:f:p/80 - which is like your fsxnet address 21:n/f.p - p is zero if you are not a point.) Mine are: fd00:0:f1d0:0:21:2:74:0 (MBSE
21:2/116) and fd00:0:f1d0:0:21:2:74:1 (Mystic 21:2/116.1).

Oh, and a point of clarity, Ive configured the network to only allow telnet (port 23) and binkp (24554) traffic. I can enable it to do other ports as
well - so dont be concerned that you are fully opening up your BBS ports to
the FSXnet world. On your side, you can still configure your OS based
firewall features if you want to...

You dont need to have IPV6 enabled via your ISP to use it (I dont) but if
IPv6 wont work for you, I can give you an IPv4 address, itll be 10.21.n.f/16. (You dont need to do anything, Ill configure the address from myside, and
itll magically work for you (I think at least) :)

If it does indeed work out well, then Paul, this might be a feature of FSXnet as a secure Fido Network :) The beauty of this software, is that its NOT an
all or nothing setup. Folks can still choose to have public internet incoming telnet/binkp, etc in addition to having this secure network between systems.

Let me know if you are interested in playing with this...

...deon

_--_|\ | Deon George
/ \ | Chinwag BBS - A BBS on a PI in Docker!
\_.__.*/ |
V | Coming from the 'burbs of Melbourne, Australia

--- Mystic BBS v1.12 A43 2019/02/23 (Raspberry Pi/32)
* Origin: Chinwag | MysticBBS in Docker on a Pi! (21:2/116.1)

On 09 Apr 2019 at 06:53a, deon pondered and said...

If it does indeed work out well, then Paul, this might be a feature of FSXnet as a secure Fido Network :) The beauty of this software, is that its NOT an all or nothing setup. Folks can still choose to have public internet incoming telnet/binkp, etc in addition to having this secure network between systems.

Let me know if you are interested in playing with this...

I am :) It looks really interesting Deon. Let me read all of the above again and start to have a play with it. I will post some follow up feedback and questions here in the next couple of days.My first thought was how secure/reliable/reputable etc. is the vendor offering the service? I'll start to do some research of my own tonight when I have some time.

Thanks for sharing this :)

Best, Paul

--- E:avon@bbs.nz ------ W:bbs.nz ---
--- K:keybase.io/avon --------------

--- Mystic BBS v1.12 A43 2019/03/03 (Windows/32)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (21:1/101)

On 09 Apr 2019, Avon said the following...

I am :) It looks really interesting Deon. Let me read all of the above again and start to have a play with it. I will post some follow up feedback and questions here in the next couple of days.My first thought was how secure/reliable/reputable etc. is the vendor offering the
service? I'll start to do some research of my own tonight when I have
some time.

So if you want to setup a hub or something with me to ping-pong traffic, we
can try that out.

I did try and research the technology and strangely I saw very little on it. But I did read the blog post on the author's goals and it looked good. The
code is also on github - another good pointer.

With anything that I setup (I use a lot of open source), I try and use it without the dependency of the vendor and while my test network is somewhat depending on the existence of the core zerotier servers, I do intend to set
it up without that dependency. The first step is setting up a "moon" (in their terminology). I have a cloud server on in an AU data center which would be a good target for this. The next step would be to replicate that configuration between a couple of nodes to increase availability.

In terms of reliability - because it is essentially peer to peer (once you
have discovered the secure network), its as reliable as each side of the
peer. (And the peer is relative to who you are communicating with.)

As I mentioned previously, they offer a free and paid service - if you use their portal (I'm not using that though). If you use your own "network controller" (in their terms), then there is no limits. I am currently setup as a network controller.

...deon

_--_|\ | Deon George
/ \ | Chinwag BBS - A BBS on a PI in Docker!
\_.__.*/ |
V | Coming from the 'burbs of Melbourne, Australia

--- Mystic BBS v1.12 A43 2019/02/23 (Raspberry Pi/32)
* Origin: Chinwag | MysticBBS in Docker on a Pi! (21:2/116.1)

On 04-09-19 06:53, deon wrote to All <=-

I wanted to make a proposal. I recently discovered, what I think, is a really cool piece of software - ZeroTier. Anybody played with it?

Hmm, this sounds cool, though my setup is particularly complex - I actually have 2 BBSs using different IPs on the same host. But looks fun to play with. I will have to configure any IP address(es) in my BBS software.

I will have to have another read of your message and see how it all works. :)

Either way, it will be easier if I can have 2 addresses on my BBS machine.

And adding another 2 networks (IPv4 and IPv6) will mean I'm literally running half a dozen different networks on the wire - 4 IPv4 and 2 IPv6. :)

I have a ZeroTier address now, how do you want me to send it to you?

... Husbands are like fires. They go out if unattended
=== MultiMail/Win v0.51
--- SBBSecho 3.03-Linux
* Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)

On 09 Apr 2019, Vk3jed said the following...

I have a ZeroTier address now, how do you want me to send it to you?

You can post it here, or netmail me.

Also, make sure you "join" the network so that I can correlate your address
to the pending joins. I think I can give you two addresses as well - lets see ;)

...deon

_--_|\ | Deon George
/ \ | Chinwag BBS - A BBS on a PI in Docker!
\_.__.*/ |
V | Coming from the 'burbs of Melbourne, Australia

--- Mystic BBS v1.12 A43 2019/02/23 (Raspberry Pi/32)
* Origin: Chinwag | MysticBBS in Docker on a Pi! (21:2/116.1)

On 04-09-19 10:40, deon wrote to Vk3jed <=-

On 09 Apr 2019, Vk3jed said the following...

I have a ZeroTier address now, how do you want me to send it to you?

You can post it here, or netmail me.

Well, here it is. ;)

571976f9b4

Also, make sure you "join" the network so that I can correlate your address to the pending joins. I think I can give you two addresses as
well - lets see ;)

OK, which network do I join?


... What has 4 legs and an arm? A pit bull.
=== MultiMail/Win v0.51
--- SBBSecho 3.03-Linux
* Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)

On 09 Apr 2019, Vk3jed said the following...

OK, which network do I join?

This one: a47cf4a8c0001500

...deon

_--_|\ | Deon George
/ \ | Chinwag BBS - A BBS on a PI in Docker!
\_.__.*/ |
V | Coming from the 'burbs of Melbourne, Australia

--- Mystic BBS v1.12 A43 2019/02/23 (Raspberry Pi/32)
* Origin: Chinwag | MysticBBS in Docker on a Pi! (21:2/116.1)

Anyway, if any body is interested, Ive setup a ZeroTier network for BBS "traffic" - specifically to test on for FSXnet (and you shouldnt notice
if you dont use it).

This is really interesting! I've just installed it on my MBP and my ID is 9dfde24895.

When I click join network I get 3 options

[x] managed [ ] allow global [ ] allow default route

These are the defaults... which should I (un)tick?

---
|14Best regards,
|11Ch|03rist|11ia|15n |11a|03ka |11Me|03aTLoT|11io|15N

|07ÄÄ |08[|10eml|08] |15ml@erb.pw |07ÄÄ |08[|10web|08] |15www.erb.pw |07ÄÄÄ¿ |07ÄÄ |08[|09fsx|08] |1521:1/158 |07ÄÄ |08[|11tqw|08] |151337:1/101 |07ÂÄÄÙ |07ÄÄ |08[|12rtn|08] |1580:774/81 |07ÄÂ |08[|14fdn|08] |152:250/5 |07ÄÄÄÙ
|07ÄÄ |08[|10ark|08] |1510:104/2 |07ÄÙ

--- Mystic BBS v1.12 A43 2019/03/02 (Linux/64)
* Origin: The Quantum Wormhole, Ramsgate, UK. bbs.erb.pw (21:1/158)

On 09 Apr 2019, MeaTLoTioN said the following...

This is really interesting! I've just installed it on my MBP and my ID is 9dfde24895.

Done, you are setup. You should be able to connect to my BBS on the address gave previously. I'll connect to you as well and test this out.

Let me know how you go.

When I click join network I get 3 options
[x] managed [ ] allow global [ ] allow default route

Let it as is. I havent explored what that "managed" or allow global does yet
- but leave allow default route unchecked - you want to use your original default route for other greater internet traffic.

...deon

_--_|\ | Deon George
/ \ | Chinwag BBS - A BBS on a PI in Docker!
\_.__.*/ |
V | Coming from the 'burbs of Melbourne, Australia

--- Mystic BBS v1.12 A43 2019/02/23 (Raspberry Pi/32)
* Origin: Chinwag | MysticBBS in Docker on a Pi! (21:2/116.1)

On 09 Apr 2019 at 09:19a, deon pondered and said...

So if you want to setup a hub or something with me to ping-pong traffic, we can try that out.

OK thanks :) Yep that's an option we can look at doing. I will get things working with Agency first then look to do something in this regard.

I need more hours in the day :)

Best, Paul

--- E:avon@bbs.nz ------ W:bbs.nz ---
--- K:keybase.io/avon --------------

--- Mystic BBS v1.12 A43 2019/03/03 (Windows/32)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (21:1/101)

On 04-09-19 11:29, deon wrote to Vk3jed <=-

On 09 Apr 2019, Vk3jed said the following...

OK, which network do I join?

This one: a47cf4a8c0001500

Now off to RTFM, so I can join. :D

<shuffle> <shuffle>

*tap* *tap* *tap* (on keys)

root@lemaker:~# zerotier-cli help
ZeroTier One version 1.2.12 build 0 (platform 1 arch 3)
Copyright (c) 2011-2018 ZeroTier, Inc.
This is free software: you may copy, modify, and/or distribute this
work under the terms of the GNU General Public License, version 3 or
later as published by the Free Software Foundation.
No warranty expressed or implied.

Usage: zerotier-cli [-switches] <command/path> [<args>]

Available switches:
-h - Display this help
-v - Show version
-j - Display full raw JSON output
-D<path> - ZeroTier home path for parameter auto-detect
-p<port> - HTTP port (default: auto)
-T<token> - Authentication token (default: auto)

Available commands:
info - Display status info
listpeers - List all peers
listnetworks - List all networks
join <network> - Join a network
leave <network> - Leave a network
set <network> <setting> - Set a network setting
get <network> <setting> - Get a network setting
listmoons - List moons (federated root sets)
orbit <world ID> <seed> - Join a moon via any member root
deorbit <world ID> - Leave a moon
root@lemaker:~# zerotier-cli join a47cf4a8c0001500
200 join OK

That looks promising. :)

... A file cabinet is a place where papers get lost alphabetically.
=== MultiMail/Win v0.51
--- SBBSecho 3.03-Linux
* Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)

On 04-09-19 20:58, deon wrote to MeaTLoTioN <=-

Let it as is. I havent explored what that "managed" or allow global
does yet - but leave allow default route unchecked - you want to use
your original default route for other greater internet traffic.

I just used the CLI client, becaise that's my only option. :)


... Error reading FAT Table...Try Skinny one ? (Y/N)
=== MultiMail/Win v0.51
--- SBBSecho 3.03-Linux
* Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)

On 10 Apr 2019, Vk3jed said the following...

root@lemaker:~# zerotier-cli join a47cf4a8c0001500

You are in !

...deon

_--_|\ | Deon George
/ \ | Chinwag BBS - A BBS on a PI in Docker!
\_.__.*/ |
V | Coming from the 'burbs of Melbourne, Australia

--- Mystic BBS v1.12 A43 2019/02/23 (Raspberry Pi/32)
* Origin: Chinwag | MysticBBS in Docker on a Pi! (21:2/116.1)

On 10 Apr 2019, Vk3jed said the following...

root@lemaker:~# zerotier-cli join a47cf4a8c0001500

Out of curiousity, what does your "listpeers" look like.

I've created a "moon" (actually two) which completely removes the dependancy
of zerotiers "roots" (aka "earth"). So, wondering if you've config has discovered them.

...deon

_--_|\ | Deon George
/ \ | Chinwag BBS - A BBS on a PI in Docker!
\_.__.*/ |
V | Coming from the 'burbs of Melbourne, Australia

--- Mystic BBS v1.12 A43 2019/02/23 (Raspberry Pi/32)
* Origin: Chinwag | MysticBBS in Docker on a Pi! (21:2/116.1)

Done, you are setup. You should be able to connect to my BBS on the address gave previously. I'll connect to you as well and test this out.

Ah, had a problem and had to reinstall as I didn't quite get the LXC
container stuff working.

Can you redo me using this node id please: 886642e222

That should get me all sorted then. had to make a few tweaks to my LXC.
In case anyone is interested in running this inside LXC containers, with my
set up I just needed to add this to my container.conf file (proxmox)

lxc.cgroup.devices.allow: c 10:200 rwm
lxc.hook.autodev: sh -c "modprobe tun; cd ${LXC_ROOTFS_MOUNT}/dev; mkdir net; mknod net/tun c 10 200; chmod 0666 net/tun"

Once that was done, all I needed was to reboot my container and viola! unfortunately I had to follow quite a few dodgy pages and guides that didn't work before I found out how to actually do it right, hence why my node number id changed.

Thanks Deon! =)

---
|14Best regards,
|11Ch|03rist|11ia|15n |11a|03ka |11Me|03aTLoT|11io|15N

|07ÄÄ |08[|10eml|08] |15ml@erb.pw |07ÄÄ |08[|10web|08] |15www.erb.pw |07ÄÄÄ¿ |07ÄÄ |08[|09fsx|08] |1521:1/158 |07ÄÄ |08[|11tqw|08] |151337:1/101 |07ÂÄÄÙ |07ÄÄ |08[|12rtn|08] |1580:774/81 |07ÄÂ |08[|14fdn|08] |152:250/5 |07ÄÄÄÙ
|07ÄÄ |08[|10ark|08] |1510:104/2 |07ÄÙ

--- Mystic BBS v1.12 A43 2019/03/02 (Linux/64)
* Origin: The Quantum Wormhole, Ramsgate, UK. bbs.erb.pw (21:1/158)

On 10 Apr 2019, MeaTLoTioN said the following...

Can you redo me using this node id please: 886642e222

Done - I see you online :)

...deon

_--_|\ | Deon George
/ \ | Chinwag BBS - A BBS on a PI in Docker!
\_.__.*/ |
V | Coming from the 'burbs of Melbourne, Australia

--- Mystic BBS v1.12 A43 2019/02/23 (Raspberry Pi/32)
* Origin: Chinwag | MysticBBS in Docker on a Pi! (21:2/116.1)

Out of curiousity, what does your "listpeers" look like.

root@bbs:/mystic# zerotier-cli listpeers
200 listpeers <ztaddr> <path> <latency> <version> <role>
200 listpeers 12ebe83918 192.168.0.249/21730;10237;10237 3 1.2.12 LEAF
200 listpeers 8841408a2e 107.191.46.210/9993;227;202 32 1.1.5 PLANET
200 listpeers 9d219039f3 188.166.94.177/9993;227;170 42 1.1.5 PLANET
200 listpeers 9dfde24895 192.168.0.7/9993;10236;6301 8 1.2.12 LEAF
200 listpeers a3511e316e 101.165.22.219/33269;8719;3709 351 1.2.12 LEAF
200 listpeers a47cf4a8c0 103.231.88.156/9993;5512;5512 332 1.2.12 LEAF
200 listpeers c90b9235de 101.165.22.219/48424;2234;7415 442 1.2.12 LEAF
200 listpeers e4da7455b2 35.236.10.22/52203;8531;8531 143 1.2.13 LEAF

---
|14Best regards,
|11Ch|03rist|11ia|15n |11a|03ka |11Me|03aTLoT|11io|15N

|07ÄÄ |08[|10eml|08] |15ml@erb.pw |07ÄÄ |08[|10web|08] |15www.erb.pw |07ÄÄÄ¿ |07ÄÄ |08[|09fsx|08] |1521:1/158 |07ÄÄ |08[|11tqw|08] |151337:1/101 |07ÂÄÄÙ |07ÄÄ |08[|12rtn|08] |1580:774/81 |07ÄÂ |08[|14fdn|08] |152:250/5 |07ÄÄÄÙ
|07ÄÄ |08[|10ark|08] |1510:104/2 |07ÄÙ

--- Mystic BBS v1.12 A43 2019/03/02 (Linux/64)
* Origin: The Quantum Wormhole, Ramsgate, UK. bbs.erb.pw (21:1/158)

Done - I see you online :)

Boom! awesome stuff... does this mean we can now play a network game of Doom? lol.

---
|14Best regards,
|11Ch|03rist|11ia|15n |11a|03ka |11Me|03aTLoT|11io|15N

|07ÄÄ |08[|10eml|08] |15ml@erb.pw |07ÄÄ |08[|10web|08] |15www.erb.pw |07ÄÄÄ¿ |07ÄÄ |08[|09fsx|08] |1521:1/158 |07ÄÄ |08[|11tqw|08] |151337:1/101 |07ÂÄÄÙ |07ÄÄ |08[|12rtn|08] |1580:774/81 |07ÄÂ |08[|14fdn|08] |152:250/5 |07ÄÄÄÙ
|07ÄÄ |08[|10ark|08] |1510:104/2 |07ÄÙ

--- Mystic BBS v1.12 A43 2019/03/02 (Linux/64)
* Origin: The Quantum Wormhole, Ramsgate, UK. bbs.erb.pw (21:1/158)

On 10 Apr 2019, MeaTLoTioN said the following...

200 listpeers a3511e316e 101.165.22.219/33269;8719;3709 351 1.2.12 LEAF 200 listpeers a47cf4a8c0 103.231.88.156/9993;5512;5512 332 1.2.12 LEAF
200 listpeers c90b9235de 101.165.22.219/48424;2234;7415 442 1.2.12 LEAF

Is me :)

I couldnt connect to your BBS on port 23 or 24554 using IPv6 (connection refused), but IPv4 works :)

...deon

_--_|\ | Deon George
/ \ | Chinwag BBS - A BBS on a PI in Docker!
\_.__.*/ |
V | Coming from the 'burbs of Melbourne, Australia

--- Mystic BBS v1.12 A43 2019/02/23 (Raspberry Pi/32)
* Origin: Chinwag | MysticBBS in Docker on a Pi! (21:2/116.1)

On 10 Apr 2019, MeaTLoTioN said the following...

Boom! awesome stuff... does this mean we can now play a network game of Doom? lol.

Ha! We probably could. (I just have to find a machine to run it...) :)

Wow that brings back memories...

...deon

_--_|\ | Deon George
/ \ | Chinwag BBS - A BBS on a PI in Docker!
\_.__.*/ |
V | Coming from the 'burbs of Melbourne, Australia

--- Mystic BBS v1.12 A43 2019/02/23 (Raspberry Pi/32)
* Origin: Chinwag | MysticBBS in Docker on a Pi! (21:2/116.1)

On 10 Apr 2019, deon said the following...

On 10 Apr 2019, MeaTLoTioN said the following...

200 listpeers a3511e316e 101.165.22.219/33269;8719;3709 351 1.2.12 LE 200 listpeers a47cf4a8c0 103.231.88.156/9993;5512;5512 332 1.2.12 LEA 200 listpeers c90b9235de 101.165.22.219/48424;2234;7415 442 1.2.12 LE

Is me :)

I couldnt connect to your BBS on port 23 or 24554 using IPv6 (connection refused), but IPv4 works :)

I disabled IPv6 on my BBS as having it enabled had caused issues on my home network where for some reason it prevented me logging in with either IPv4 or IPv6 lol. I'll look into it and hopefully enable it this evening when I get home from work =)

Cool project Deon!!

---
|14Best regards,
|11Ch|03rist|11ia|15n |11a|03ka |11Me|03aTLoT|11io|15N

|07ÄÄ |08[|10eml|08] |15ml@erb.pw |07ÄÄ |08[|10web|08] |15www.erb.pw |07ÄÄÄ¿ |07ÄÄ |08[|09fsx|08] |1521:1/158 |07ÄÄ |08[|11tqw|08] |151337:1/101 |07ÂÄÄÙ |07ÄÄ |08[|12rtn|08] |1580:774/81 |07ÄÂ |08[|14fdn|08] |152:250/5 |07ÄÄÄÙ
|07ÄÄ |08[|10ark|08] |1510:104/2 |07ÄÙ

--- Mystic BBS v1.12 A43 2019/03/02 (Linux/64)
* Origin: The Quantum Wormhole, Ramsgate, UK. bbs.erb.pw (21:1/158)

On 04-10-19 02:32, deon wrote to Vk3jed <=-

On 10 Apr 2019, Vk3jed said the following...

root@lemaker:~# zerotier-cli join a47cf4a8c0001500

Out of curiousity, what does your "listpeers" look like.

root@lemaker:~# zerotier-cli listpeers
200 listpeers <ztaddr> <path> <latency> <version> <role>
200 listpeers 8841408a2e 45.32.246.179/9993;3775;3682 92 1.1.5 PLANET
200 listpeers 9d219039f3 128.199.197.217/9993;13793;8607 217 1.1.5 PLANET
200 listpeers a47cf4a8c0 103.231.88.156/9993;18798;11935 74 1.2.12 LEAF
200 listpeers c90b9235de 101.165.22.219/12809;695;1607 94 1.2.12 LEAF

I've created a "moon" (actually two) which completely removes the dependancy of zerotiers "roots" (aka "earth"). So, wondering if you've config has discovered them.

Let's see from that. :)

Well, I seem to have an IP address, though 1 isn't enough to get both boards on the VLAN. :)


... Kitty litter: created by exploding catnip.
=== MultiMail/Win v0.51
--- SBBSecho 3.03-Linux
* Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)

On 04-10-19 06:49, MeaTLoTioN wrote to deon <=-

I disabled IPv6 on my BBS as having it enabled had caused issues on my home network where for some reason it prevented me logging in with
either IPv4 or IPv6 lol. I'll look into it and hopefully enable it this evening when I get home from work =)

That's weird, unless you're running on Linux, in which case you need to enable ONLY IPv6 is using :: (IPv6)/0.0.0.0 (IPv4) as your listening address. Not a consideration for me, because I'm actually listening on specific IPs (the joys of multiple BBSs on the one physical host ;) ).

Now which BBS to put on the new IP. Currently, any attempt to connect to my ZeroTier IP (v4 or v6) will get "Connection refused", because I have to specifically listen there. :)


... ADVENTURE: The land between entertainment and panic.
=== MultiMail/Win v0.51
--- SBBSecho 3.03-Linux
* Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)

On 10 Apr 2019, Vk3jed said the following...

Well, I seem to have an IP address, though 1 isn't enough to get both boards on the VLAN. :)

I just have you a second IPv6 address. Do you see it?

...deon

_--_|\ | Deon George
/ \ | Chinwag BBS - A BBS on a PI in Docker!
\_.__.*/ |
V | Coming from the 'burbs of Melbourne, Australia

--- Mystic BBS v1.12 A43 2019/02/23 (Raspberry Pi/32)
* Origin: Chinwag | MysticBBS in Docker on a Pi! (21:2/116.1)

On 10 Apr 2019, Vk3jed said the following...

200 listpeers 8841408a2e 45.32.246.179/9993;3775;3682 92 1.1.5 PLANET
200 listpeers 9d219039f3 128.199.197.217/9993;13793;8607 217 1.1.5 PLANET 200 listpeers a47cf4a8c0 103.231.88.156/9993;18798;11935 74 1.2.12 LEAF 200 listpeers c90b9235de 101.165.22.219/12809;695;1607 94 1.2.12 LEAF

Cool, the bottom two are me. They show up as LEAFs because you've sent
traffic through them. If you do "zerotier-cli orbit a47cf4a8c0 a47cf4a8c0", they should change to "moon" in listpeers.

As a (preferred) moon, your system will route packets through them to find other systems. Once you have found another system, its a peer to peer (direct) conversation with the peer.

...deon

_--_|\ | Deon George
/ \ | Chinwag BBS - A BBS on a PI in Docker!
\_.__.*/ |
V | Coming from the 'burbs of Melbourne, Australia

--- Mystic BBS v1.12 A43 2019/02/23 (Raspberry Pi/32)
* Origin: Chinwag | MysticBBS in Docker on a Pi! (21:2/116.1)

On 10 Apr 2019, MeaTLoTioN said the following...

Cool project Deon!!

It is :)

Now with Tony on the secure network, we can have conversations about cricket and nobody will understand us. Oh, wait, they dont anyway right ???? ;)

...deon

_--_|\ | Deon George
/ \ | Chinwag BBS - A BBS on a PI in Docker!
\_.__.*/ |
V | Coming from the 'burbs of Melbourne, Australia

--- Mystic BBS v1.12 A43 2019/02/23 (Raspberry Pi/32)
* Origin: Chinwag | MysticBBS in Docker on a Pi! (21:2/116.1)

On 04-10-19 07:18, deon wrote to Vk3jed <=-

On 10 Apr 2019, Vk3jed said the following...

Well, I seem to have an IP address, though 1 isn't enough to get both boards on the VLAN. :)

I just have you a second IPv6 address. Do you see it?

Yep, got it. :)


... You know. That old guy who carried moderation to excess.
=== MultiMail/Win v0.51
--- SBBSecho 3.03-Linux
* Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)

On 09 Apr 2019 at 09:19a, deon pondered and said...

was how secure/reliable/reputable etc. is the vendor offering the service? I'll start to do some research of my own tonight when I have some time.

So if you want to setup a hub or something with me to ping-pong traffic, we can try that out.

Just starting to look at getting installed now. Looks like I need a later
.NET framework, installing that as I type.

Best, Paul

--- E:avon@bbs.nz ------ W:bbs.nz ---
--- K:keybase.io/avon --------------

--- Mystic BBS v1.12 A43 2019/03/03 (Windows/32)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (21:1/101)

On 10 Apr 2019 at 08:11p, Avon pondered and said...

Just starting to look at getting installed now. Looks like I need a later .NET framework, installing that as I type.

Argh, seems the installer is borking when I try to install a later berion of .NET ... I'll keep trying.

Best, Paul

--- E:avon@bbs.nz ------ W:bbs.nz ---
--- K:keybase.io/avon --------------

--- Mystic BBS v1.12 A43 2019/03/03 (Windows/32)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (21:1/101)

On 04-10-19 07:26, deon wrote to Vk3jed <=-

On 10 Apr 2019, Vk3jed said the following...

200 listpeers 8841408a2e 45.32.246.179/9993;3775;3682 92 1.1.5 PLANET
200 listpeers 9d219039f3 128.199.197.217/9993;13793;8607 217 1.1.5 PLANET 200 listpeers a47cf4a8c0 103.231.88.156/9993;18798;11935 74 1.2.12 LEAF 200 listpeers c90b9235de 101.165.22.219/12809;695;1607 94 1.2.12 LEAF

Cool, the bottom two are me. They show up as LEAFs because you've sent traffic through them. If you do "zerotier-cli orbit a47cf4a8c0 a47cf4a8c0", they should change to "moon" in listpeers.

As a (preferred) moon, your system will route packets through them to
find other systems. Once you have found another system, its a peer to
peer (direct) conversation with the peer.

root@lemaker:~# zerotier-cli listpeers
200 listpeers <ztaddr> <path> <latency> <version> <role>
200 listpeers 8841408a2e 45.32.246.179/9993;4093;9005 141 1.1.5 PLANET
200 listpeers 9d219039f3 128.199.197.217/9993;9100;3918 174 1.1.5 PLANET
200 listpeers 9dfde24895 - -1 1.2.12 LEAF
200 listpeers a47cf4a8c0 103.231.88.156/61769;4095;4018 79 1.2.12 MOON
200 listpeers c90b9235de 101.165.22.219/12809;7437;2315 94 1.2.12 LEAF
200 listpeers e70257905e - -1 - MOON


... Screams? WHAT screams? Oh, those? Ignore them...
=== MultiMail/Win v0.51
--- SBBSecho 3.03-Linux
* Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)

On 04-10-19 07:28, deon wrote to MeaTLoTioN <=-

On 10 Apr 2019, MeaTLoTioN said the following...

Cool project Deon!!

It is :)

Now with Tony on the secure network, we can have conversations about cricket and nobody will understand us. Oh, wait, they dont anyway right ???? ;)

Hahaha, yeah I'm sure we can baffle them with cricket. :D

On a more serious note, how do we find each other's systems on the virtual LAN?


... A BAND AID?!?! I'm a doctor not a... Oh yeah...
=== MultiMail/Win v0.51
--- SBBSecho 3.03-Linux
* Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)

On 09 Apr 2019 at 06:53a, deon pondered and said...

Send me a message (reply to this or a netmail) with your 10 hex network
ID (its public and safe to share). Ill authorise you to join the

09613a7f1c

Best, Paul

--- E:avon@bbs.nz ------ W:bbs.nz ---
--- K:keybase.io/avon --------------

--- Mystic BBS v1.12 A43 2019/03/03 (Windows/32)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (21:1/101)

On 09 Apr 2019 at 06:53a, deon pondered and said...

(or IP address in IP networks). Select "Join Network" and join this network ID: a47cf4a8c0001500. (If you are using an installation without

OK and for info.. I have also created one with a network ID of
9bee8941b52f3c85 just to see how that end of the equation works.

Seems like a limit to this whole thing may be the number of nodes that can
join a network being limited to 100 or you have to pay $$ to add more?

Best, Paul

--- E:avon@bbs.nz ------ W:bbs.nz ---
--- K:keybase.io/avon --------------

--- Mystic BBS v1.12 A43 2019/03/03 (Windows/32)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (21:1/101)

On 10 Apr 2019, Vk3jed said the following...

On a more serious note, how do we find each other's systems on the
virtual LAN?

Since its an (virtual) ethernet device, its normal IP resolution. If this
works out, we should have a DNS server resolving our addresses.

I am assigning static IPs - using FTN addressing, so for now those one the network can be found by their FTN->IP address. Its covered in my first note.

...deon

_--_|\ | Deon George
/ \ | Chinwag BBS - A BBS on a PI in Docker!
\_.__.*/ |
V | Coming from the 'burbs of Melbourne, Australia

--- Mystic BBS v1.12 A43 2019/02/23 (Raspberry Pi/32)
* Origin: Chinwag | MysticBBS in Docker on a Pi! (21:2/116.1)

On 10 Apr 2019, Avon said the following...

09613a7f1c

You are online...

...deon

_--_|\ | Deon George
/ \ | Chinwag BBS - A BBS on a PI in Docker!
\_.__.*/ |
V | Coming from the 'burbs of Melbourne, Australia

--- Mystic BBS v1.12 A43 2019/02/23 (Raspberry Pi/32)
* Origin: Chinwag | MysticBBS in Docker on a Pi! (21:2/116.1)

On 10 Apr 2019, Avon said the following...

Seems like a limit to this whole thing may be the number of nodes that
can join a network being limited to 100 or you have to pay $$ to add
more?

No - I'm not using their web interface (which has the free and paid tiers).

I'm running my own network controller - so there are no limits.

...deon

_--_|\ | Deon George
/ \ | Chinwag BBS - A BBS on a PI in Docker!
\_.__.*/ |
V | Coming from the 'burbs of Melbourne, Australia

--- Mystic BBS v1.12 A43 2019/02/23 (Raspberry Pi/32)
* Origin: Chinwag | MysticBBS in Docker on a Pi! (21:2/116.1)

On 04-10-19 12:06, deon wrote to Vk3jed <=-

On 10 Apr 2019, Vk3jed said the following...

On a more serious note, how do we find each other's systems on the
virtual LAN?

Since its an (virtual) ethernet device, its normal IP resolution. If
this works out, we should have a DNS server resolving our addresses.

Have you ever tried blindly finding the IP address of other devices on a lightly populated Ethernet segment? ;) Oh, DNS could get, umm, "interesting", here, given the number of networks I'm on (now 6 lol).

I am assigning static IPs - using FTN addressing, so for now those one
the network can be found by their FTN->IP address. Its covered in my
first note.

Hmm, OK.


... Try this chicken. It tastes just like rattlesnake.
=== MultiMail/Win v0.51
--- SBBSecho 3.03-Linux
* Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)

On 11 Apr 2019, Vk3jed said the following...

Have you ever tried blindly finding the IP address of other devices on a lightly populated Ethernet segment? ;) Oh, DNS could get, umm, "interesting", here, given the number of networks I'm on (now 6 lol).

So from an implementation point of view, I was thinking each FTN network
would have its own secure network (and some probably would want that). I dont think there is a limit on an end machine on how many interfaces it has, and normal IP routing controls which route a packet goes out.

Now that doesnt work in your case, since you bind an app to a IP - I dont, so
I could easily have an FSX network, a TQW network, a Fido (hah!) network,
etc, and my BINKD server will happily accept any incoming connections from the IPs of those virtual ethernet interfaces. (And my benefit is that it wont accept connections from the greater internet - which is why I think this is pretty cool.)

From a DNS resolution point of view, there are two approaches. Since your address is static (even if it is dynamically created), you could put that in the DNS for your domain, or the ZC of the Fido Network you are in could put
it in their DNS domain (ahum, Paul fsxnet.nz?). EG: chinwag.fsxnet.nz could resolve to fd00:0:f1d0:0:15:2:74:0, etc.

...deon

_--_|\ | Deon George
/ \ | Chinwag BBS - A BBS on a PI in Docker!
\_.__.*/ |
V | Coming from the 'burbs of Melbourne, Australia

--- Mystic BBS v1.12 A43 2019/02/23 (Raspberry Pi/32)
* Origin: Chinwag | MysticBBS in Docker on a Pi! (21:2/116.1)

On 04-10-19 23:48, deon wrote to Vk3jed <=-

So from an implementation point of view, I was thinking each FTN
network would have its own secure network (and some probably would want that). I dont think there is a limit on an end machine on how many interfaces it has, and normal IP routing controls which route a packet goes out.

Yep that makes sense. :)

Now that doesnt work in your case, since you bind an app to a IP - I
dont, so I could easily have an FSX network, a TQW network, a Fido
(hah!) network, etc, and my BINKD server will happily accept any
incoming connections from the IPs of those virtual ethernet interfaces. (And my benefit is that it wont accept connections from the greater internet - which is why I think this is pretty cool.)

Well, I still could, I can bind to multiple arbitrary interfaces. Mystic and Synchronet do it easily. With BinkD, I have to make a special hostname entry in DNS that resolves to all of the IPs I want to bind to. I would want a special (not generally known) hostname, because some of the IPs won't be reachable frrom the Internet, and others are outside the secure network.

From a DNS resolution point of view, there are two approaches. Since
your address is static (even if it is dynamically created), you could
put that in the DNS for your domain, or the ZC of the Fido Network you
are in could put it in their DNS domain (ahum, Paul fsxnet.nz?). EG: chinwag.fsxnet.nz could resolve to fd00:0:f1d0:0:15:2:74:0, etc.

That would work, though it will add some unreachable hosts on the public DNS.
)


... Growing older is typical. Growing up is the option.
=== MultiMail/Win v0.51
--- SBBSecho 3.03-Linux
* Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)

On 11 Apr 2019, Vk3jed said the following...

That would work, though it will add some unreachable hosts on the public DNS. )

I dont see that being an issue - I've done that for mail relays for years :)

...deon

_--_|\ | Deon George
/ \ | Chinwag BBS - A BBS on a PI in Docker!
\_.__.*/ |
V | Coming from the 'burbs of Melbourne, Australia

--- Mystic BBS v1.12 A43 2019/02/23 (Raspberry Pi/32)
* Origin: Chinwag | MysticBBS in Docker on a Pi! (21:2/116.1)

On 04-11-19 10:21, deon wrote to Vk3jed <=-

On 11 Apr 2019, Vk3jed said the following...

That would work, though it will add some unreachable hosts on the public DNS. )

I dont see that being an issue - I've done that for mail relays for
years :)

Yes, I don't see it as a big issue either. :)


... Better to live with one spider than many bugs.
=== MultiMail/Win v0.51
--- SBBSecho 3.03-Linux
* Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)

RE: ZeroTier - Securing FSXnet?
BY: deon (21:2/116.1)

On Tuesday, April 09, 2019 at 05:53 AM, Deon (21:2/116.1) wrote:

Once I enable your connection, youll get an IPV6 address that I set as: d>fd00:0:f1d0:0:21:n:f:p/80 - which is like your fsxnet address 21:n/f.p - p i d>zero if you are not a point.) Mine are: fd00:0:f1d0:0:21:2:74:0 (MBSE d>21:2/116) and fd00:0:f1d0:0:21:2:74:1 (Mystic 21:2/116.1).

Hi Deon,

my ZT id is: f59fbfeba9

A .-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-.
/*\ | /\liens' /\lcove! WWIV on Linux - Taguig, Metro Manila, Philippines |
/ v \`-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=[ WWIV Reg. #30282 ]-=-=-=-=-=-=-=-'

--- WWIV 5.3.0.development
* Origin: /\lien's /\lcove! WWIV 5 on Linux | aliens.free.net.ph (21:4/147)

On 16 Apr 2019, Xenos said the following...

my ZT id is: f59fbfeba9

Done, you are setup and you should get an IPv6 & IPv4 address.

...deon

_--_|\ | Deon George
/ \ | Chinwag BBS - A BBS on a PI in Docker!
\_.__.*/ |
V | Coming from the 'burbs of Melbourne, Australia

--- Mystic BBS v1.12 A43 2019/02/23 (Raspberry Pi/32)
* Origin: Chinwag | MysticBBS in Docker on a Pi! (21:2/116.1)

... Husbands are like fires. They go out if unattended

LOL! Stolen!!!

--- Wildcat! v8.0.454.8 (Apr 27 2019), Editor Mod v2.1
* Origin: Lean Angle BBS * Southaven MS * winserver.org (21:2/136)

On 04-27-19 12:01, Robert Wolfe wrote to Vk3jed <=-

... Husbands are like fires. They go out if unattended

LOL! Stolen!!!

LOL it is a good one. :D


... ** ERROR ** Unable to insert witty tagline.
=== MultiMail/Linux v0.51
--- SBBSecho 3.03-Linux
* Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)