tinc - Jan 2003 - Tinc Newbie question

If anyone can help I'd appreciate it.  I'm trying to set up a
point-to-point VPN so that I can bridge networks securely (actually all
I want to get across is multicast, but that's a different issue
entirely).

Through looking through the documentation I've got everything set up as
I think it should.

my config files look like:
---
Name = trinity
PrivateKeyFile = /etc/tinc/gondor/rsa_key.priv

Mode = switch
ConnectTo = merry
--- 
for tinc.conf and
---
Address = merry.stagelogic.com
Subnet = 137.112.54.0/24

-----BEGIN RSA PUBLIC KEY-----
...
-----END RSA PUBLIC KEY-----
--- for merry's host file

trinity has it's own host file which is similar to merry's but with the
appropriate values.  I run tincd in debug level 5 (so I get all the
debug info, and I get the following output when I try to ping to the
other side of the tunnel)
---
Jan 24 11:19:11 trinity tinc[6475]: tincd 1.0pre8 (Jan 24 2003 09:25:27)
starting, debug level 5
Jan 24 11:19:11 trinity tinc[6475]: /dev/net/tun is a Linux tun/tap
device
Jan 24 11:19:11 trinity tinc[6475]: Executing script tinc-up
Jan 24 11:19:11 trinity /etc/hotplug/net.agent: invoke ifup tap0
Jan 24 11:19:11 trinity tinc[6475]: Listening on 0.0.0.0 port 655
Jan 24 11:19:11 trinity tinc[6475]: Ready
Jan 24 11:19:11 trinity tinc[6475]: Trying to connect to merry
(137.112.54.64 port 655)
Jan 24 11:19:11 trinity tinc[6475]: Connected to merry (137.112.54.64
port 655)
Jan 24 11:19:11 trinity tinc[6475]: Connection with merry (137.112.54.64
port 655) activated
Jan 24 11:19:21 trinity tinc[6475]: Learned new MAC address
fe:fd:0:0:0:0
Jan 24 11:19:21 trinity tinc[6475]: Broadcasting packet of 98 bytes from
trinity (MYSELF)
Jan 24 11:19:21 trinity tinc[6475]: Sending packet of 98 bytes to merry
(137.112.54.64 port 655)
Jan 24 11:19:21 trinity tinc[6475]: No valid key known yet for merry
(137.112.54.64 port 655), queueing packet
Jan 24 11:19:21 trinity tinc[6475]: Flushing queue for merry
(137.112.54.64 port 655)
Jan 24 11:19:22 trinity tinc[6475]: Sending packet of 98 bytes to
trinity (MYSELF)
Jan 24 11:19:22 trinity tinc[6475]: Packet is looping back to us!
Jan 24 11:19:23 trinity tinc[6475]: Sending packet of 98 bytes to
trinity (MYSELF)
Jan 24 11:19:23 trinity tinc[6475]: Packet is looping back to us!

--- /var/log/messages

I do have the public key that was generated for merry in the hosts file,
so I don't know what the problem is.  It appears to me that the
connection is getting made correctly, and authenticating, but it doesn't
seem to work.  Any suggestions, or other tests I should try (since ping
isn't necessarily the best thing to try) would be appreciated.

thanks in advance.
Andrew S. Hintz

-- 
Andrew S. Hintz <drew@stagelogic.com>
Stage Logic, LLC
Tinc:         Discussion list about the tinc VPN daemon
Archive:      http://mail.nl.linux.org/lists/
Tinc site:    http://tinc.nl.linux.org/

On Fri, Jan 24, 2003 at 11:21:12AM -0500, Andrew S. Hintz wrote:
> Through looking through the documentation I've got everything set up as
> I think it should.
[...]
> Jan 24 11:19:21 trinity tinc[6475]: Learned new MAC address fe:fd:0:0:0:0
In switch mode, don't set the MAC address of the interface to
fe:fd:0:0:0:0 and don't disable arp. The MAC addresses of the tun/tap
interfaces should be unique, the tun/tap driver initially assigns a
random one, you don't have to change it.

-- 
Met vriendelijke groet / with kind regards,
    Guus Sliepen <guus@sliepen.eu.org>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url :
http://brouwer.uvt.nl/pipermail/tinc/attachments/20030124/80985a84/attachment.pgp