similar to: Switch mode tinc and masquerade

Hi all, Love tinc by the way. It's a great VPN. I'm having issues with 2 nodes always talking through an intermediate node. My set up is a VPS in a cloud somewhere that's running tinc and 2 other nodes - one a roaming laptop (always NAT'd) and the other a server behind a dynamic IP home broadband connection (Not NAT'd but firewalled). Neither the laptop nor the home

We have a handful of nodes set up. Some are NAT'd but a few have direct access to the Internet. Sample confs: HostA: Name = HostA AddressFamily = any Interface = tap0 Mode = switch Connectto = HostB GraphDumpFile = /tmp/mesh HostB: Name = HostB AddressFamily = any Interface = tap0 Mode = switch Connectto = HostA GraphDumpFile = /tmp/mesh And so on. If I use HostA as the main meta sever.

my network: local pc(192.168.1.2)-->openwrt_adsl_router A( 192.168.1.1/24&11.22.33.44pppoe&10.10.10.1/24 tinc)<---remote B: 10.10.20.1/24 ^ | remote C:10.10.0.1/24 all running tinc 1.0.x, ADSL router

Ok, I have a challenge - get two services working over a single port. (!) Sometimes it's a web service, sometimes it's a VNC service. Here's what I had in mind: 1) Server is normally a webserver listening on port 80, and normally has the following rules active: # iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT # iptables -t nat -A POSTROUTING -j MASQUERADE 2)

yes, I have these in C host file: Subnet=10.10.0.0/24 Subnet=0.0.0.0/1 Subnet=128.0.0.0/1 ## not metioned, because I think is maybe works in same as 0.0.0.0/1 B host file doesn't have 0.0.0.0/1 and 128.0.0.0/1 I only added one route to 5.6.7.8 via B, not via C On Mon, Feb 29, 2016 at 4:40 PM, Maxim Vorontsov <6012030 at gmail.com> wrote: > hi. > > Are you add only

On Thu, Mar 08, 2001 at 11:51:53AM +0100, Marcel Loesberg wrote: > I'm going to build a VPN and I want to use either Tinc or FreeS/WAN. > I've started building the VPN with FreeS/WAN and I find things are getting > rather complicated. > I looks like Tinc is much easier to configure but in the FAQ and in what I've > seen of the documentation so far there is no mention of

Hello, I've been using tinc v1.0 for the last few weeks in router mode - to great success. It's EXACTLY what I was looking for in a VPN at the time - most of the security of IPSEC with none of the interoperability issues. However, a few days ago, I got a VOIP phone that doesn't use IP without paying several thousand extra dollars on top of what we've already spent on the phone

Hello! I've setup tinc almost succesfully, but there is one problem remaining with a routing issue. Short Description of the situation : Workstation A (192.168.1.3) | | Tinc Host "50K" (192.168.1.1) | | <Unknown Firewall> + + + <Masq Firewall (Linux)> and Tinc Host "oeoe" (192.168.2.1) | | Workstation B

I have been using tinc in routed mode for many years. However, I tried today to use tinc in switch mode and it doesn't seem to be working. The problem is that my router is running a very old version of tinc! I am wondering if anyone remembers whether a bug like this was fixed... I have set up two nodes, running tinc, in switch mode. One is running an up to date version of tinc (from

tinc uses direct UDP communication for performance, not reliability. If you want to establish more metaconnections for increased reliability, you can use AutoConnect (though it probably won't work across NATs). A better solution is to use two central nodes (instead of one) for redundancy. On 11 June 2015 at 18:59, Daniel J. Grinkevich <danielgrinkevich at gmail.com> wrote: > If we

I am running tinc v. 1.1pre (truly as I read somewhere, ?one of the internet?s best kept secrets?) on some consumer home routers flashed with tomato firmware. I have a whole network of these, but for the purposes of this question I will focus on just three Router A (subnet 192.168.5.0/24) is connected via a standard tinc ?router? mode network with Router B (subnet 192.168.15.0/24). Router B, in

> On Jun 4, 2015, at 5:52 PM, Etienne Dechamps <etienne at edechamps.fr> wrote: > > Are you sure B is correctly configured to forward packets at the layer > 3 level between the interface of the "router" tinc and the interface > of the "switch" tinc? (iptables, etc.) > No, I am not sure about this and I think this is what I don?t understand properly

Hi I am testing running tinc in switch mode. , my topology is as follows Site 1 (tinc-srv01) -> Site 2 (tinc-srv02) I have configured the bridge interfaces with ip addresses and able to ping between bridges. I then setup a server on each site and tested layer 2 connectivity between the two servers. Topology as follows. Server 1 - *Site 1* (tinc-srv01) -> *Site 2* (tinc-srv02) - Server 2

Hi, I am looking networking together about 1000-2000 sites across the country. I've been looking through these mailing lists. Saw the thread from the person who had 1000+ running on Amazon, and how they essentially stripped all security out of it. Also know that the ChaosVPN uses tinc, for at least 130+ sites although I'm a bit fuzzy on the details for it. Are there any other cases of

Hi Lars Thank you for reply. My apologies it is running in "*TAP*" mode. root at tinc-srv:~# tincd -n netname -D -d3 tincd 1.0.23 (Dec 5 2013 17:16:47) starting, debug level 3 /dev/net/tun is a Linux tun/tap device (tap mode) I have enabled ip forwarding and it seems that bridging rules is enabled root at tinc-srv02:~# cat /proc/sys/net/bridge/bridge-nf-call-iptables 1 root at

Howdy, I tried tackling this on irc with Ivo, but I suspect that irc may really not be the best medium for technical discussions, so I'll reprise it here. I am trying to duplicate the "tinc from behind a masquerading firewall" example from the tinc web site: (home) <--> (masquerading firewall) <--> (office) 192.168.1.21 192.168.1.1/1.2.3.4

Hello to everybody, Sorry if my english isn?t very good. I need pass 802.1q through a VPN between two offices. I have mounted a WRT54GL, with OpenWRT firmware, conected to a switch trunk port in both offices. In the switch of the first office I have created five tagged VLANs and I need pass these VLAN to the second offices where it has created it too. Can I do this with Tinc in HUB/Switch

Hi, I've been able to get tinc setup when I flush all my iptables, but after enabling iptables and a delay I get a "Destination Net Unknown". I have three host (HOME10.0.3.2, MASTER 10.0.3.1, WEB 10.0.3.3) MASTER and WEB are in Digital ocean in the same data centre. HOME <---> MASTER <---> WEB I've tried multiple forwarding/masquerading/etc rules and

Can you post your Tinc configuration too? El lun., 30 ene. 2017 a las 11:42, Dave Albert (<dave.albert at gmail.com>) escribió: > Here is an extract of my current iptables that are not working: > > iptables -L -n -v > > Chain INPUT (policy DROP 8 packets, 1120 bytes) > pkts bytes target prot opt in out source > destination > 0 0

Hello guys I don''t know if this thing has been posted before (if it was , please forgive me). I have 7 computers at home and I want all of them to have access to the internet. In order to do that , I set up a linux router (2 network cards) as a usual router (eth0 : 82.77.69.75 - internet connection ; eth1 : 192.168.10.1 - local network) . The other computers have ips ranging from