Hi, I have a standard Debian system running tinc 1.0.13. The exact (apart from keys and ip-address) setup runs fine on other debian systems, only this fails: i get a message about bogus data in syslog and no connectivity. syslog tells me: Nov 23 16:02:59 fvh2 tinc.fvh[7740]: tincd 1.0.13 (Apr 13 2010 12:07:31) starting, debug level 0 Nov 23 16:02:59 fvh2 tinc.fvh[7740]: /dev/net/tun is a Linux tun/tap device (tap mode) Nov 23 16:02:59 fvh2 tinc.fvh[7740]: Ready Nov 23 16:03:01 fvh2 tinc.fvh[7740]: Bogus data received from vps001 (94.142.246.174 port 655) Nov 23 16:03:10 fvh2 kernel: [ 2086.404129] fvh: no IPv6 routers present Nov 23 16:03:10 fvh2 tinc.fvh[7740]: Bogus data received from clientbp (192.168.0.120 port 57637) Nov 23 16:03:18 fvh2 tinc.fvh[7740]: Bogus data received from server (83.163.x.98 port 655) Nov 23 16:03:30 fvh2 tinc.fvh[7740]: Bogus data received from server (83.163.x.98 port 655) Nov 23 16:03:38 fvh2 tinc.fvh[7740]: Statistics for Linux tun/tap device (tap mode) /dev/net/tun: Nov 23 16:03:38 fvh2 tinc.fvh[7740]: total bytes in: 468 Nov 23 16:03:38 fvh2 tinc.fvh[7740]: total bytes out: 0 Nov 23 16:03:38 fvh2 tinc.fvh[7740]: Nodes: Nov 23 16:03:38 fvh2 tinc.fvh[7740]: fvhworkstation2 at MYSELF cipher 0 digest 0 maclength 0 compression 0 options c status 0018 nexthop fvhworkstation2 via fvhworkstation2 pmtu 1518 (min 0 max 1518) Nov 23 16:03:38 fvh2 tinc.fvh[7740]: End of nodes. Nov 23 16:03:38 fvh2 tinc.fvh[7740]: Edges: Nov 23 16:03:38 fvh2 tinc.fvh[7740]: End of edges. Nov 23 16:03:38 fvh2 tinc.fvh[7740]: Subnet list: Nov 23 16:03:38 fvh2 tinc.fvh[7740]: 0:ff:db:4a:b7:c3#10 owner fvhworkstation2 Nov 23 16:03:38 fvh2 tinc.fvh[7740]: End of subnet list. What can be the solution to this? A server tells me this in debug=255 mode: Connection from 80.101.x.4 port 42685 Connection closed by fvhworkstation2 (80.101.x.4 port 42685) Closing connection with fvhworkstation2 (80.101.x.4 port 42685) The problem system says: Trying to connect to server (83.163.x.98 port 655) Connected to server (83.163.x.98 port 655) Bogus data received from server (83.163.x.98 port 655) Closing connection with server (83.163.x.98 port 655) tinc.conf: Name=fvhworkstation2 AddressFamily=ipv4 ConnectTo=server ConnectTo=vps001 Device=/dev/net/tun PrivateKeyFile=/etc/tinc/fvh/rsa_key.priv Mode=switch KeyExpire=299 MACExpire=301 PingInterval=29 PingTimeout=6 Folkert van Heusden -- MultiTail ist eine flexible Applikation um Logfiles und Kommando Eingaben zu ?berpr?fen. Inkl. Filter, Farben, Zusammenf?hren, Ansichten etc. http://www.vanheusden.com/multitail/ ---------------------------------------------------------------------- Phone: +31-6-41278122, PGP-key: 1F28D8AE, www.vanheusden.com
On Tue, Nov 23, 2010 at 04:10:50PM +0100, folkert wrote:> I have a standard Debian system running tinc 1.0.13. The exact (apart > from keys and ip-address) setup runs fine on other debian systems, only > this fails: i get a message about bogus data in syslog and no > connectivity.[...]> What can be the solution to this?Most likely there is a problem with the private key of the new system or the public key of that system that you copied to the other nodes. Check that there is only one key in each file, and if it still fails, remove them and create new keys. -- Met vriendelijke groet / with kind regards, Guus Sliepen <guus at tinc-vpn.org> -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 198 bytes Desc: Digital signature URL: <http://www.tinc-vpn.org/pipermail/tinc/attachments/20101123/8c4e3ebc/attachment.pgp>
> > I have a standard Debian system running tinc 1.0.13. The exact (apart > > from keys and ip-address) setup runs fine on other debian systems, only > > this fails: i get a message about bogus data in syslog and no > > connectivity. > [...] > > What can be the solution to this? > > Most likely there is a problem with the private key of the new system or the > public key of that system that you copied to the other nodes. Check that there > is only one key in each file, and if it still fails, remove them and create new > keys.Dammit, indeed that was the problem. No idea how that happened. Recreating the keys solved it. Folkert van Heusden -- MultiTail er et flexible tool for ? kontrolere Logfiles og commandoer. Med filtrer, farger, sammenf?ringer, forskeliger ansikter etc. http://www.vanheusden.com/multitail/ ---------------------------------------------------------------------- Phone: +31-6-41278122, PGP-key: 1F28D8AE, www.vanheusden.com