How to Set Up Peer-to-Peer VPN with Tinc on Ubuntu 22.04

How to Set Up Peer-to-Peer VPN with Tinc on Ubuntu 22.04

How to Set Up Peer-to-Peer VPN with Tinc on Ubuntu 22.04

Author: Łukasz Bodziony

Email: lukasz@bodziony.net.pl

DevOps Services: bodziony.net.pl

Published: June 2025

Introduction

Tinc is a mesh VPN daemon that supports peer-to-peer encrypted tunnels. Unlike hub-and-spoke VPNs, Tinc dynamically builds a full mesh network, allowing each node to communicate directly. In this tutorial, Łukasz Bodziony walks you through installing and configuring Tinc on Ubuntu 22.04 to create a resilient P2P VPN.

Prerequisites

  • Two or more Ubuntu 22.04 servers (or VMs) with public or private IPs
  • Sudo/root access on each node
  • Firewall ports UDP 655 (customizable) open between peers

Step 1: Install Tinc

sudo apt update  
sudo apt install -y tinc

Step 2: Create VPN Network Directory Structure

On each node replace myvpn with your desired network name:

sudo mkdir -p /etc/tinc/myvpn/hosts  
sudo mkdir -p /var/lib/tinc/myvpn

Step 3: Generate RSA Keys and Host Config

On each node:

sudo tincd -n myvpn -K4096

Create /etc/tinc/myvpn/tinc.conf:

Mode = switch  
Name = <nodename>  
AddressFamily = ipv4  
Interface = tinc-myvpn

Step 4: Configure Host Files

On each node edit /etc/tinc/myvpn/hosts/<nodename> and include:

Name = <nodename>  
Address = <node-IP-or-dns>  
Port = 655  
# PublicKey follows  
<Paste the public key from /etc/tinc/myvpn/rsa_key.pub>

Then copy each host file to all other peers:

scp /etc/tinc/myvpn/hosts/<nodename> user@peer:/etc/tinc/myvpn/hosts/

Step 5: Configure VPN Interface IPs

Create /etc/tinc/myvpn/tinc-up (make it executable):

#!/bin/sh  
ip link set $INTERFACE up  
ip addr add 10.0.0.<node-id>/24 dev $INTERFACE

Create /etc/tinc/myvpn/tinc-down:

#!/bin/sh  
ip addr del 10.0.0.<node-id>/24 dev $INTERFACE  
ip link set $INTERFACE down

Make both scripts executable:

sudo chmod +x /etc/tinc/myvpn/tinc-up /etc/tinc/myvpn/tinc-down

Step 6: Start Tinc Daemon on Each Node

sudo systemctl enable tinc@myvpn  
sudo systemctl start tinc@myvpn  
sudo systemctl status tinc@myvpn

Step 7: Test Connectivity

Ping peers over the VPN interface:

ping -c 3 10.0.0.<peer-node-id>

Conclusion

You now have a fully meshed P2P VPN running on Ubuntu 22.04 using Tinc. Each node can communicate directly with any other, making your network robust and scalable.

🚀 Run your P2P VPN on a high-performance Linux VPS: netcloud24.com/servers/vps-linux/

© 2025 Written by Łukasz Bodziony – All rights reserved.

Comments

Post a Comment

Popular posts from this blog

How to Install Moodle LMS on Debian 12 Server - Manual & Docker

Image
How to Install Moodle LMS on Debian 12 Server - Manual & Docker How to Install Moodle LMS on Debian 12 Server This guide covers both manual and Docker-based installations of Moodle LMS on a VPS Linux server . Requirements Debian 12 VPS (recommended: NETCLOUD24 server VPS) Root or sudo access Minimum 2 GB RAM Manual Installation sudo apt update && sudo apt upgrade -y sudo apt install apache2 mariadb-server php php-mysql libapache2-mod-php php-xml php-curl php-gd php-intl php-zip php-mbstring unzip git -y # Configure MariaDB sudo mysql_secure_installation sudo mysql -u root -p CREATE DATABASE moodle; CREATE USER 'moodleuser'@'localhost' IDENTIFIED BY 'secure_pass'; GRANT ALL PRIVILEGES ON moodle.* TO 'moodleuser'@'localhost'; FLUSH PRIVILEGES; EXIT; # Download Moodle cd /var/www/html sudo git clone https://github.com/moodle/moodle.git cd moo...
Read more

How to Install and Configure GlusterFS on Ubuntu 24.04

Image
How to Install and Configure GlusterFS on Ubuntu 24.04 How to Install and Configure GlusterFS on Ubuntu 24.04 Updated: June 2025 Introduction GlusterFS is a scalable, distributed file system designed to handle large amounts of data across multiple storage servers. In this guide, we’ll walk through the installation and configuration of GlusterFS on Ubuntu 24.04. Prerequisites Two or more Ubuntu 24.04 servers Root or sudo access Proper DNS or /etc/hosts setup for all nodes All servers should have static IP addresses Step 1: Update All Nodes sudo apt update && sudo apt upgrade -y Step 2: Install GlusterFS Server on All Nodes sudo apt install -y software-properties-common sudo add-apt-repository ppa:gluster/glusterfs-11 sudo apt update sudo apt install -y glusterfs-server sudo systemctl enable --now glusterd Step 3: Configure Ho...
Read more

How to Install OpenEMR on Ubuntu 24.04 Server - Manual & Docker

Image
How to Install OpenEMR on Ubuntu 24.04 Server - Manual & Docker How to Install OpenEMR on Ubuntu 24.04 Server Learn how to install OpenEMR manually or via Docker on a VPS Linux environment. Powered by NETCLOUD24 - server VPS . Requirements Ubuntu 24.04 Server (VPS Linux recommended) Root or sudo access 1 GB RAM minimum LAMP stack or Docker installed Manual Installation of OpenEMR sudo apt update && sudo apt upgrade -y sudo apt install apache2 mysql-server php libapache2-mod-php php-mysql php-cli php-curl php-zip php-gd php-mbstring php-xml php-soap git unzip -y # Configure MySQL sudo mysql_secure_installation # Create OpenEMR database sudo mysql -u root -p CREATE DATABASE openemr; CREATE USER 'openemruser'@'localhost' IDENTIFIED BY 'secure_password'; GRANT ALL PRIVILEGES ON openemr.* TO 'openemruser'@'localhost'; FLUSH PRIVILEGES; EX...
Read more