similar to: wireless vpn + nat

https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=452 ------- Additional Comments From mzurakowski-bin@data.pl 2006-02-21 20:06 MET ------- In ip route add .../29 it should be /24 of course. I think that source routing is setup correctly: I can ping/connect to my router through both interfaces from outside no matter how I setup default routing on it. Marcin Z -- Configure bugmail:

Hello, We have 3 DSL connections connected to eth3 and another interface with a dedicated link in eth0 (main table) We want to balance selected traffic (using fwmark and iptables) through our 3 DSL connections in a secondary table named DSL (without using the dedicated link in eth0), but the next command is not accepted, and gives us the following error: # ip route add default

Hi tinc users, I have two Tinc nodes (A, B) running on trusted computers. Between A and B there's no direct internet connection. So I have to set up the third node X to bridge them: [ A ] ======= [ X ] ======= [ B ] trusted untrusted trusted X is on a cloud service like AWS thus it's on an untrusted third party. Once it's is compromised the attacker can access to the

https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=452 Summary: DNAT to internal network don't work with source routing and 2 uplinks Product: netfilter/iptables Version: linux-2.6.x Platform: i386 OS/Version: Debian GNU/Linux Status: NEW Severity: normal Priority: P2

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Gus & Tinc-VPN List: It looks like I need to run 2 instances of tincd on each server. 1 instance of tincd will responsible for running a VPN over the LAN on eth1. This means Class C addresses from 10.0.1.10 -> 10.0.1.250 Another instance of tincd will be responsible for running a VPN over the WAN on eth0. This means Class C addresses from

Hello all, It''s my first letter on this list, and, my English is not very well. Please take me indulgence for grammar/syntax and over erorrs :)) I have trouble for acl''s of ip range. But, acl for one host (with ip adress) work fine. Please help me for make work acl/find erorr in acl. Becouse I''m new shorewall user, I maked test configuration on Virtual Mashine

I setup some IPSEC between 2 networks. From 1 network I can ping the other networks local connection but not anything beyond that. Network A - 10.0.1.1 (loc) 23.23.23.23 (net) Network B - 10.0.2.1 (loc) 44.44.44.44 (net) I''m on local machine 10.0.1.10 on network A, I can ping 10.0.2.1 but I cannot ping a machine on that network ex. 10.0.2.200. I was thinking it probally has to do

Hello, I successfully built a vpn between two hosts ("main" and "iquique") (and its SubNets), but I have problems when I want to add another host ("valparaiso"): I get a lot of Duplicates packets everywhere and a very slow vpn. I guess that is a routing problem, but I have try with a lot of alternatives without result. I have try with "switch",

Hi folks, Sorry to trouble you all - I'm having some trouble getting tincd up and running - I suspect I'm having problems with subnets. Any help would relaly be appreciated! At the moment I'm trying to get two linux boxes, both of which are running as NAT routers for their respective networks to talk. My goal is to allow staff to connect to the corporate network from their laptops

Hi Folks, Does anyone have a set of config files handy, using tinc in routed/tun mode (preferably DeviceType=utun) I'm particularly interested to see what the tinc-up and tinc-down files should look like when the vpn is not using tap mode. I have this, from my tap (switch mode tinc) , but it doesn't work for tun devices.    ifconfig $INTERFACE inet 10.10.101.2/24 up If I run my

Hello folks, we're planning an IPv6-Deployment using tinc. A routed tinc-network should connect a couple of wireless access points. In order to avoiding scaling issues, the network should not be run in switched mode. Our site uses 2001:470:780f::/56 - Each ap gets a single /64 network, to be distributed to its wireless clients. Example: ap 1: 2001:470:780f:1::/64 ap 2:

Hello, I have been reading through the documentation and trying to set up a very small VPN as a test for a larger rollout that I would like to complete in the future but cannot get this working. The configuration seems like it should be relatively simple, so I'm most likely missing something basic but I just cannot see what I'm doing wrong. At the moment I am trying to get this working

I set up this config: +------+ -+ ISP1 +--+ +------+ | +-------+ +--+ linux | +------+ | +-------+ -+ ISP2 +--+ +------+ No problem. Standard setup with two ISP''s. Both routed subnets. Default gateway is ISP1. No magic here. Now I put a server behind the Linux box. I want the server to be reachable on an /extra/ IP in the routed subnet of ISP2. +------+ -+ ISP1

Hi all, We'd like to enable OAuth with Keycloak in Dovecot, after enabling 'OAUTHBEARER XOAUTH2' in Dovecot based on online document, I can confirm Dovecot is ready for OAuth using openssl command, however when the auth request comes in, it failed in establishing a SSL connection with Keycloak server on port 443, shown as following in debug logs. I can confirming using commands

Hi, I have two connections to the Internet. I implemented the load balancing as described in chapter 4.2 "Routing for multiple uplinks/providers" The problem that occurred is that the client applications like Yahoo Messenger or even PuTTY (SSH client) are loosing the connection very often. Does anyone experienced this problem? Does anyone knows an workaround for this problem?

Hi everyone, I need know if there is any command that show the hosts connected, networks, etc... in a Tinc-VPN v1.0 how in Tinc-VPN v1.1 Regards, Ramses

Can you just compile the latest from the git repo on to raspian os? On Sat, Mar 31, 2018, 11:21 AM Ramses <ramses.sevilla at gmail.com> wrote: > El 29 de marzo de 2018 23:41:24 CEST, Ramses <ramses.sevilla at gmail.com> > escribió: > >Hi everyone, > > > >I have installed Tinc-VPN v1.0.19-3, that is the last version that > >there is in Raspbian 7,

Hi everyone, I have installed Tinc-VPN v1.0.19-3 that is the last, versión that there is in Raspbian 7, installed with the apt-get command. I will like know what will be the best way to migrate this version to Tinc-VPN v1.1 Regards, Ramses

Hello Ramses, Am Sun, 01 Apr 2018 01:44:01 +0200 schrieb Ramses <ramses.sevilla at gmail.com>: > [..] > > Correct? in general, this is exactly the right procedure. > I have installed Raspbian 7 (Wheezy). I will have problems doing this > proccess un Raspbian? Raspbian (being derived from Debian) is not a problem. The old base distribution (wheezy) is a problem. In the

Hello Ramses, Am Sat, 31 Mar 2018 22:03:25 +0200 schrieb Ramses <ramses.sevilla at gmail.com>: > But what repository I need to add to the sources.list file? the internet out there would have told you :) https://wiki.debian.org/DebianExperimental Be sure to understand, that this suite contains packages of undefined quality (this is the purpose of this suite). Do not dare to install