tinc - May 2004 - Configuration issues, causing inter subnet pings to fail.

I have the following configuration, each ip with a subnet of
255.255.255.0.

With the current configuration files I am able to ping back and forth
between the two gateways at any of their 3 ips, but I am unable to ping
between an appx host on one subnet to an appx host or the gateway on the
other subnet. What am I doing wrong?

Host
Private IP (eth0)
Public IP (eth1)
VPN IP (tun0)
gateway.la
192.168.1.254
192.168.10.5
192.168.1.253
app1.la
192.168.1.1


app2.la
192.168.1.2






gateway.tx
192.168.2.254
192.168.10.6
192.168.2.253
app1.tx
192.168.2.1


app2.tx
192.168.2.2




[/etc/tinc]$ cat tinc.conf
Name = la
Device = /dev/tun
ConnectTo = tx
PrivateKeyFile = /etc/tinc/rsa_key.priv
[/etc/tinc]$ cat tinc-up
#!/bin/sh

echo "Configuring VPN..."

ifconfig $INTERFACE hw ether fe:fd:0:0:0:0

ifconfig $INTERFACE 192.168.1.253 netmask 255.255.255.0

ifconfig $INTERFACE -arp

route add -net 192.168.2.0 netmask 255.255.255.0 dev $INTERFACE
[/etc/tinc]$ cat tinc-down
#!/bin/bash

route del -net 192.168.2.0 netmask 255.255.255.0 dev $INTERFACE

ifconfig $INTERFACE down
[/etc/tinc]$ cat hosts/la
Address = gateway.la
Subnet = 192.168.1.0/24
PublicKeyFile = /etc/tinc/rsa_key.pub
[/etc/tinc]$ cat hosts/tx
Address = gateway.tx
Subnet = 192.168.2.0/24
PublicKeyFile = /etc/tinc/rsa_key.pub
[/etc/tinc]$
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
http://brouwer.uvt.nl/pipermail/tinc/attachments/20040507/9f78cd61/attachment.htm

On Fri, May 07, 2004 at 12:16:04AM +1200, Scott Mohekey wrote:
> With the current configuration files I am able to ping back and forth
> between the two gateways at any of their 3 ips, but I am unable to ping
> between an appx host on one subnet to an appx host or the gateway on the
> other subnet. What am I doing wrong?
Is forwarding enabled (echo 1 >/proc/sys/net/ipv4/ip_forward)? Are there
firewall rules preventing packets from being forwarded? Is your routing
table correct?

-- 
Met vriendelijke groet / with kind regards,
    Guus Sliepen <guus@sliepen.eu.org>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url :
http://brouwer.uvt.nl/pipermail/tinc/attachments/20040506/6f25c31e/attachment.pgp

I have the following configuration, each ip with a subnet of 255.255.255.0.

With the current configuration files I am able to ping back and forth 
between the two gateways at any of their 3 ips, but I am unable to ping 
between an appx host on one subnet to an appx host or the gateway on the 
other subnet. What am I doing wrong?

Host Private IP (eth0) Public IP (eth1) VPN IP (tun0)
gateway.la 192.168.1.254 192.168.10.5 192.168.1.253
app1.la 192.168.1.1

app2.la 192.168.1.2





gateway.tx 192.168.2.254 192.168.10.6 192.168.2.253
app1.tx 192.168.2.1

app2.tx 192.168.2.2




[/etc/tinc]$ cat tinc.conf
Name = la
Device = /dev/tun
ConnectTo = tx
PrivateKeyFile = /etc/tinc/rsa_key.priv
[/etc/tinc]$ cat tinc-up
#!/bin/sh

echo "Configuring VPN..."

ifconfig $INTERFACE hw ether fe:fd:0:0:0:0

ifconfig $INTERFACE 192.168.1.253 netmask 255.255.255.0

ifconfig $INTERFACE -arp

route add -net 192.168.2.0 netmask 255.255.255.0 dev $INTERFACE
[/etc/tinc]$ cat tinc-down
#!/bin/bash

route del -net 192.168.2.0 netmask 255.255.255.0 dev $INTERFACE

ifconfig $INTERFACE down
[/etc/tinc]$ cat hosts/la
Address = gateway.la
Subnet = 192.168.1.0/24
PublicKeyFile = /etc/tinc/rsa_key.pub
[/etc/tinc]$ cat hosts/tx
Address = gateway.tx
Subnet = 192.168.2.0/24
PublicKeyFile = /etc/tinc/rsa_key.pub
[/etc/tinc]$
_______________________________________________tinc mailing list
tinc@tinc-vpn.org
http://brouwer.uvt.nl/cgi-bin/mailman/listinfo/tinc
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
http://brouwer.uvt.nl/pipermail/tinc/attachments/20040507/923363cc/attachment.html