ποΈ pki
Defines the path of each file required for a Nebula host: CA certificate, host certificate, and host key. Each of these
ποΈ static_host_map
The static host map defines a set of hosts with fixed IP addresses on the internet (or any network). A host can have
ποΈ lighthouse
lighthouse.am_lighthouse
ποΈ listen
listen sets the UDP port Nebula will use for sending/receiving traffic and for handshakes.
ποΈ punchy
punchy configures the sending of inbound/outbound packets at a regular interval to avoid expiration of firewall nat
ποΈ cipher
This value must be identical on ALL NODES/LIGHTHOUSES. Nebula does not support use of different ciphers simultaneously!
ποΈ preferred_ranges
preferred_ranges sets the priority order for underlay IP addresses. Two hosts on the same LAN would likely benefit
ποΈ relay
EXPERIMENTAL: relay support for networks that canβt establish direct connections.
ποΈ tun
tun.disabled
ποΈ logging
logging.level
ποΈ sshd
sshd enables nebula's built-in debugging console, which can be accessed via ssh. It can expose informational and
ποΈ firewall
The default state of the Nebula interface host firewall is deny all for all inbound and outbound traffic. Firewall
ποΈ routines
Default: 1
ποΈ stats
Nebula can provide stats for Graphite or Prometheus. Options
ποΈ local_range
localrange has been deprecated in favor of preferredranges