So I am attempting to add a 2nd vpn to my existing setup and for some reason
I can't seem to get it to work quite right.
The issue I'm having right now is successful execution of the tinc-up
script. It's probably something obvious but after several days I still
don't see what I'm missing. I can see in syslog that
"Script tinc-up exited with non-zero status 1"
Both vpns are definitely running.
donald at Donald-TincVM:~$ ps -aux | grep tincd
Warning: bad ps syntax, perhaps a bogus '-'? See
http://procps.sf.net/faq.html
root 931 0.0 0.4 3940 1240 ? Ss 16:22 0:00
/usr/sbin/tincd -n vpn
root 939 0.0 0.3 3752 956 ? Ss 16:22 0:00
/usr/sbin/tincd -n alan
donald 1567 0.0 0.3 3044 864 pts/1 R+ 16:26 0:00 grep
--color=auto tincd
Following is some relevant console output.
donald at Donald-TincVM:/etc/tinc$ ls -la
total 32
drwxr-xr-x 4 root root 4096 2010-12-27 16:02 .
drwxr-xr-x 130 root root 12288 2010-12-27 16:03 ..
drwxr-xr-x 3 root root 4096 2010-12-26 12:26 alan
-rw-r--r-- 1 root root 92 2010-12-27 16:02 nets.boot
-rw-r--r-- 1 root root 81 2010-03-07 08:57 nets.boot~
drwxr-xr-x 3 root root 4096 2010-12-27 07:33 vpn
donald at Donald-TincVM:/etc/tinc$ cat ./nets.boot
## This file contains all names of the networks to be started on system
startup.
vpn
alan
#
donald at Donald-TincVM:/etc/tinc$ ls -la ./vpn
total 24
drwxr-xr-x 3 root root 4096 2010-12-27 07:33 .
drwxr-xr-x 4 root root 4096 2010-12-27 16:02 ..
drwxr-xr-x 2 root root 4096 2010-12-27 07:32 hosts
-rwxr-xr-x 1 root root 887 2010-03-07 11:09 rsa_key.priv
-rwxr-xr-x 1 root root 138 2010-12-27 07:33 tinc.conf
-rwxr-xr-x 1 root root 274 2010-12-26 12:26 tinc-up
donald at Donald-TincVM:/etc/tinc$ ls -la ./alan
total 24
drwxr-xr-x 3 root root 4096 2010-12-26 12:26 .
drwxr-xr-x 4 root root 4096 2010-12-27 16:02 ..
drwxr-xr-x 2 root root 4096 2010-12-24 15:08 hosts
-rw-r--r-- 1 root root 1679 2010-12-24 11:09 rsa_key.priv
-rw-r--r-- 1 root root 106 2010-12-24 14:51 tinc.conf
-rwxr-xr-x 1 root root 90 2010-12-26 12:26 tinc-up
donald at Donald-TincVM:/etc/tinc$ cat ./vpn/tinc-up
#!/bin/sh
modprobe tun
ifconfig vpn 0.0.0.0
ifconfig vpn up
ifconfig eth1 0.0.0.0
ifconfig eth1 up
brctl addbr bridge
brctl addif bridge vpn
brctl addif bridge eth1
ifconfig bridge 192.168.2.11 netmask 255.255.0.0
route add default gw 192.168.2.1 bridge
ifconfig bridge up
donald at Donald-TincVM:/etc/tinc$ cat ./alan/tinc-up
#!/bin/sh
ifconfig alan 0.0.0.0
ifconfig alan up
brctl addif bridge alan
#
donald at Donald-TincVM:/etc/tinc$ brctl show
bridge name bridge id STP enabled interfaces
bridge 8000.000c29c79d3a no eth1
vpn
donald at Donald-TincVM:/etc/tinc$ ifconfig
alan Link encap:Ethernet HWaddr 4a:e8:67:f9:a4:36
inet6 addr: fe80::48e8:67ff:fef9:a436/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:6 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:500
RX bytes:0 (0.0 B) TX bytes:468 (468.0 B)
bridge Link encap:Ethernet HWaddr 00:0c:29:c7:9d:3a
inet addr:192.168.2.11 Bcast:192.168.255.255 Mask:255.255.0.0
inet6 addr: fe80::20c:29ff:fec7:9d3a/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:349 errors:0 dropped:0 overruns:0 frame:0
TX packets:362 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:27800 (27.8 KB) TX bytes:39691 (39.6 KB)
eth1 Link encap:Ethernet HWaddr 00:0c:29:c7:9d:3a
inet6 addr: fe80::20c:29ff:fec7:9d3a/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:351 errors:0 dropped:0 overruns:0 frame:0
TX packets:334 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:33210 (33.2 KB) TX bytes:35815 (35.8 KB)
Interrupt:18 Base address:0x1400
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:15 errors:0 dropped:0 overruns:0 frame:0
TX packets:15 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:1100 (1.1 KB) TX bytes:1100 (1.1 KB)
vpn Link encap:Ethernet HWaddr fe:4f:b6:2b:06:d8
inet6 addr: fe80::fc4f:b6ff:fe2b:6d8/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:54 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:500
RX bytes:0 (0.0 B) TX bytes:5026 (5.0 KB)
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://www.tinc-vpn.org/pipermail/tinc/attachments/20101227/6de07f83/attachment.htm>
On Mon, Dec 27, 2010 at 09:33:46PM -0500, Donald Pearson wrote:> So I am attempting to add a 2nd vpn to my existing setup and for some reason > I can't seem to get it to work quite right. > > The issue I'm having right now is successful execution of the tinc-up > script. It's probably something obvious but after several days I still > don't see what I'm missing. I can see in syslog that > "Script tinc-up exited with non-zero status 1"Try running the script by hand after you started tinc.> -rwxr-xr-x 1 root root 887 2010-03-07 11:09 rsa_key.priv > -rw-r--r-- 1 root root 1679 2010-12-24 11:09 rsa_key.privWhy are your private keys world readable?> donald at Donald-TincVM:/etc/tinc$ cat ./alan/tinc-up > #!/bin/sh > ifconfig alan 0.0.0.0 > ifconfig alan up > > brctl addif bridge alan > #Hm, that looks fine to me... but try running it by hand and see what kind of error message it prints. -- Met vriendelijke groet / with kind regards, Guus Sliepen <guus at tinc-vpn.org> -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 198 bytes Desc: Digital signature URL: <http://www.tinc-vpn.org/pipermail/tinc/attachments/20101228/4d8c99ba/attachment.pgp>
Reasonably Related Threads
- anaconda/kickstart: bonding device not created as expected
- Re: inquiry about differences between the tap and the vnet in the virt-manager
- anaconda/kickstart: bonding device not created as expected
- inquiry about differences between the tap and the vnet in the virt-manager
- KVM VM traffic over host's Tinc VPN