similar to: workaround to use tinc as default gateway

Hi Guus, Am Freitag, den 25.09.2015, 17:04 +0200 schrieb Guus Sliepen: > Ok, that means by default the UDP NAT timeout on the Cisco is extremely > short. > > > I check the manual of the the Cisco NAT for any TCP/UDP > > timeout settings, but there is no way to modify anything like "keeps > > TCP/UDP connections alive". > > It wouldn't be called

Hi, Guus I did some test regarding the points you mentioned below, and yes, you’re right, but some of points may need further adjusted: 1. The destination of IPv4 wouldn’t be changed, Yes I agree, that’s the goal and final destination for the communication. But during the path, it may be encapsulated into another packet(tunnel mode), where the outside IP header is the physical address, but the

Sure, let me reply all here for my finding. @Lars @Guus A’s tinc.conf: Name = bright AddressFamily = ipv4 ConnectTo = aly_hk A’s tinc-up: #!/bin/sh ifconfig $INTERFACE 10.0.0.110 netmask 255.255.255.0 A’s host config: Subnet = 10.0.0.110/32 (VPN address) Subnet = 192.168.31.0/24 (LAN address) IndirectData = yes (enabled for every tinc nodes) The node aly_hk (vpn address 10.0.0.3) connects with

I switch to lollipop 4 months ago and I never had issue. So for my opinion it is ready for daily use. Before try tinc I had my vpn implemented with openvpn, and it works great on lollipop. I switch to tinc because i prefer a mash vpn topology versus a client/server topology. -- Andrea Squeri Inviato con Sparrow (http://www.sparrowmailapp.com/?sig) Il giorno venerd? 27 marzo 2015, alle ore

Thanks for reply.. I'll try and then i'll advise you if it woks Andrea Squeri Il 30/mar/2015 11:38 "Vil Brekin" <vilbrekin at gmail.com> ha scritto: > Hi there, > > I've finally had a deeper look and found the Lollipop routing issues root > cause: Lollipop uses several routing tables instead of the default one for > previous Android versions. The main

> From: Kyler Laird <kyler-keyword-dovecot.a0ff9b at lairds.org> > I finally have dovecot mostly working and I was thinking that > I'd been saved from having to use UW-IMAPd, but I just now > noticed that there doesn't appear to be any way to run > dovecot over standard I/O; it always wants to listen on a > socket. There's the "imap" binary that

Hello there, I was hoping that maybe one of you guys could help me out with a problem I'm experiencing with tinc1.0pre7. First, I'll start with my configuration, after that I'll explain my problem. Background ---------- This is a simple, client-server situation on a private network. Both machines run the same Debian Woody 3.0 testing installation and both have identical packages

Hi, Host A has two interfaces: eth0, tap0. I want that all locally generated traffic from user 1004 goes through tap0. This is what I did: iptables -A OUTPUT -t mangle -m owner --uid-owner 1004 -j MARK --set-mark 2 echo 202 bigmac.out >> /etc/iproute2/rt_tables ip rule add fwmark 2 table bigmac.out ip route add default via 10.0.0.1 dev tap0 table bigmac.out ip route flush cache

Hi Ivo and Guus, We are writing a book on building VPNs for Linux and a part of it describes tinc. I wanted to make sure that your opinion, as tinc authors and developers, is reflected. First, let me ask a couple of technical questions. 1. If there are two hosts, foo and bar, that are to be connected via tinc, and each host should only have _one_ IP address (i.e. nmask is /32), would the

Hi everyone! I have the following requirement: I need to connect a set of Docker containers to a KVM. The containers shall be isolated in a way that they cannot communicate to each other without going through the KVM, which will act as router/firewall. For this, I thought about the following simple setup (as opposed to a more complex one involving a bridge with vlan_filtering and a seperate VLAN

Hello list, Please don''t shoot me. I know I''m doing something with bonding that bonding wasn''t made for. I just want to give it a try. I want a simple mechanism to have a failover on a 24Mbit line to a 2Mbit line in case the 24Mbit line goes down. Between A and B there are two lines: a 24Mbit and a 2Mbit. I use two OpenVPN tunnels with tap devices: +-- tap0 (A)---

Hi Tinc Groups again, Now i can set syslog. But my problem still the same. When i check Tap0 configure. I know idea what's wrong that i set. I set up tap follow these. ifconfig tap0 hw ether fe:fd:00:00:00:00 ifconfig tap0 192.168.1.1 netmask 255.255.255.0 ifconfig tap0 -arp But i notice in my routing table have 2 myvpn. Like these, myvpn * 255.0.0.0

Hey all, I'm trying to use tinc 1.0.26 from Homebrew on Mac OS X 10.10.5, and having some trouble. Is anyone successfully doing this? Here's my config: $ sudo cat /etc/tinc/robotvpn/tinc.conf Name = elendur Mode = switch AddressFamily = ipv4 Interface = tincdev0 Compression = 1 ConnectTo = robot_ph_cpe22_04 And here's the invocation: $ sudo tincd -D -c /etc/tinc/robotvpn -d tincd

Hi Maxim, I'm having the same result, though I got some more output with debug level 5; it's definitely failing to create the specified tincdev0 network device. Is there something I need to change on OS X to enable that? See: $ sudo tincd -D -c /etc/tinc/robotvpn -d tincd 1.0.26 (Nov 2 2015 06:12:50) starting, debug level 1 /dev/tap0 is a Generic BSD tap device ifconfig: interface

I have succeeded in getting two tinc1.0pre3 hosts to connect, but I can't ping one from the other. I can ping the local tap interfaces. tcpdump shows that icmp echo requests are received by the other host, but no replies are sent. The two hosts are North and South. It is the same pinging North to South and South to North. The hosts are configured as follows: South: Debian 2.2

Hello, I successfully set up a tunnel with tinc using the tun interface. however I need a tap device, because I need to run the OLSR routing protocol on the tunnel and if I use the tun mode OLSR will just skip the interface. (It is a well known thing, I had this issue before also when using OpenVPN in the past). The problem is that I cannot make tinc use a tap device. I created the tap0

On Sun, 11 Jun 2000, David Summers wrote: > Thanks for the great software package! The question I have is this: Thank you :) > My goal is to set up a triangle topology VPN between three sites and run > OSPF routing on all the sites so that if a link goes down between any two > sites the OSPF routing will reroute the packets that used to go between > the sites A <-> B to A

inquiry about differences between the tap and the vnet in the virt-manager Greetings! I encounter a problem about the network when using virt-manager to create and run a VM. when I want to establish a network bridge for the guest OS, I generally use two kinds of ways described as fellow : First method : create a bridge with the help of linux commad: brctl, or Second method : using

Hi Maxim, Not much to it: avahi-autoipd -D $INTERFACE # ifconfig $INTERFACE 169.254.45.23 netmask 255.255.0.0 up ip route add 172.20.0.0/16 dev $INTERFACE Mac OS X doesn't have "ip" by default, so I also installed the Homebrew package "iproute2mac", which provides an emulation of "ip" on top of the legacy ifconfig/route calls. The commented-out ifconfig

Hi, I have a few questions about the inner workings of netfilter (a graphical layout of my network setup @ https://aequorin.homeunix.net:62389/local/media/network-graph.png) 1) These are the syslog entries for some simple connection tests. Shorewall/netfilter has been set to record all stateful connections SSH is recognized as phys(eth0) -> $FW traffic. This is because PHYSIN is