Displaying 20 results from an estimated 20000 matches similar to: "Hide node meta data?"
2016 Jun 22
1
Metadata flooding
Thank you for the helpful advice. We will try to group the servers with
different ConnectTo servers first. If this does not help we will look at
the TunnelServer solution. Just to make sure we understand TunnelServer
correctly: do you need to specify every host as ConnectTo that the host
should be able to communicate with or is it sufficient to just provide the
hosts files?
Thanks, Hendrik
2016 Jun 21
0
Metadata flooding
On Tue, Jun 21, 2016 at 01:04:31PM +0200, Hendrik Schumacher wrote:
> From time to time the whole network goes down though. This happened when we
> restarted a larger number of servers or when there was a connectivity issue
> between datacenters or some (short) maintenance on the network
> infrastructure. The problem was already described in the mailing list (for
> example here:
2016 Dec 28
1
Performance issue with TunnelServer mode
Hi,
We have a tinc network of about ~200 hosts and in the full mesh
configuration we've had a lot of problems with the edge propagation storms
taking the entire network down. Recently we had a setup with a small number
of "hubs" to which all the other nodes connected to, which limited the
number of meta connections, but that didn't help much with the edge
propagation issues.
2013 May 10
1
ARP resolution not done from one end
Folks,
We have a setup where each mobile node connects with 1 or more tinc instances (over different links) to a central node. tinc is running in switch mode. The link is chosen by setting the IP address on the active link's interface, and the central node sees this after the first packet on the link, and moves the MAC address to a different 'ethernet port' (link). This works really
2011 Oct 26
1
Tinc CPU usage
Hi, I'm using Tinc v1.0.11 on Ubuntu 10.04 and seeing high CPU usage (up
to 30%) on what I wouldn't consider high traffic levels.
The traffic is application server to database server connections and
multicast communication for session-replication on the application server.
I'm running the tinc daemons in switch mode, to support the multicast. I
have tried settings:
TunnelServer =
2016 Jun 21
2
Metadata flooding
Hi,
we use a tinc network of about 400 nodes, all of them linux servers, partly
in different datacenters (but generally low latency). Usually this is
working very well (for weeks without a problem).
>From time to time the whole network goes down though. This happened when we
restarted a larger number of servers or when there was a connectivity issue
between datacenters or some (short)
2015 Aug 18
1
multiple nodes/servers
Thank you Lars for the reply. Your instructions were dead on.
Yes I have considered the security risks; however, I think scaleability and rapid deployment out weigh the security risks for me.
On Aug 18, 2015, at 6:31 AM, Lars Kruse <lists at sumpfralle.de> wrote:
> Hi,
>
>> Is it possible to generate one key pair?
>
> Maybe this is all you want to know?
> openssl
2020 Mar 26
1
tinc Digest, Vol 185, Issue 3
Hello Maximilian,
I think may be cause by MTU proble if you have many peer. you can run
tincd with -d 5 or tincd -n "yournetname" -k INT , check the log file
to see what happen.
if so, you can use my patch to fix this.
thanks
PHB
On Sat, Mar 21, 2020 at 7:00 PM <tinc-request at tinc-vpn.org> wrote:
> Send tinc mailing list submissions to
> tinc at tinc-vpn.org
2017 May 02
4
Multiple default gateway from tinc node
Hi, Lars
Thanks for your suggestion, will give it a try later to see how it performs.
But, yesterday, I did a below test:
A ConnectTo B and C, B ConnectTo D, C ConnectTo D; All nodes turned "IndirectData" on in its host configuration, so the tunnel only follow metacomnection instead of direct connect.
D announced default route by having the Subnet = 0.0.0.0/0 statement in its host
2017 May 01
1
How to set Subnet in a node which act as both server and client role?
Hi, Etienne
I took a look for the below host configuration parameter (IndirectData), the default is no. For the below example:
A ConnectTo B, B ConnectTo C:
If IndirectData = no (default), then A wouldn’t establish direct connection with C, but will be forwarded by B.
If IndirectData = yes, then A will try to establish direct connection with C, even though A don’t have the statement of
2017 May 02
4
Multiple default gateway from tinc node
Sure, let me reply all here for my finding. @Lars @Guus
A’s tinc.conf:
Name = bright
AddressFamily = ipv4
ConnectTo = aly_hk
A’s tinc-up:
#!/bin/sh
ifconfig $INTERFACE 10.0.0.110 netmask 255.255.255.0
A’s host config:
Subnet = 10.0.0.110/32 (VPN address)
Subnet = 192.168.31.0/24 (LAN address)
IndirectData = yes (enabled for every tinc nodes)
The node aly_hk (vpn address 10.0.0.3) connects with
2012 Apr 23
0
Tinc via satellite link stalls often
Guus,
Below a segment of a log file. I am trying to analyse why the satellite link goes down and up all the time (sometimes 10 to 15 times an hour, sometimes not for a day.
My guess is that this indicates packet loss on the satelllite link and tinc not really recovering from that. Where I inserted an empty line the log basically stopped and was silent for I guess for 14 minutes? Would setting
2013 Jan 24
3
Conflicting Default Values. A trusts B. B trusts EvilNode. Does that mean A trusts EvilNode?
*You should repeat this for all nodes you ConnectTo, or which ConnectTo
you. However, remember that you do not need to ConnectTo all nodes in the
VPN; it is only necessary to create one or a few meta-connections, after
the connections are made tinc will learn about all the other nodes in the
VPN, and will automatically make other connections as necessary. *
The above is from the docs. Assuming
2018 Mar 30
1
Tinc: performance
2019 May 06
4
very high traffic without any load
Lars, interesting - do you have an example of what that might look like in
the config file?
Thanks!
On Sun, May 5, 2019 at 6:00 PM Lars Kruse <lists at sumpfralle.de> wrote:
> Hello Christoph,
>
> I am glad, that you discovered the source of the problem!
>
>
> Am Sat, 4 May 2019 08:30:28 +0200
> schrieb "Christopher Klinge" <Christ.Klinge at web.de>:
2019 May 06
0
Aw: Re: very high traffic without any load
2020 Mar 20
2
High tinc traffic on ethernet without tinc load
Hi Lars,
Am 20.03.20 um 15:43 schrieb Lars Kruse:
> Did you really try the nice visualizations in the "Statistics" menu?
> These should allow you to see, which protocols and which peers cause the
> traffic.
>
> I am slightly confused, that you already took a look at the traffic, but you did
> not mention, which type of traffic makes up the bulk of the excessive packets
2019 May 02
2
Aw: Re: Re: very high traffic without any load
2018 Apr 01
0
Migrate from Tinc-VPN v1.0 to TINC-VPN v1.1
El 1 de abril de 2018 3:34:46 CEST, Lars Kruse <lists at sumpfralle.de> escribió:
>Hello Ramses,
>
>
>Am Sun, 01 Apr 2018 01:44:01 +0200
>schrieb Ramses <ramses.sevilla at gmail.com>:
>
>> [..]
>>
>> Correct?
>
>in general, this is exactly the right procedure.
>
>
>> I have installed Raspbian 7 (Wheezy). I will have problems doing
2018 Mar 31
0
Migrate from Tinc-VPN v1.0 to TINC-VPN v1.1
El 31 de marzo de 2018 21:13:48 CEST, Lars Kruse <lists at sumpfralle.de> escribió:
>Hello Ramses,
>
>
>Am Sat, 31 Mar 2018 17:21:52 +0200
>schrieb Ramses <ramses.sevilla at gmail.com>:
>
>> Can tell me someone if there is any repository to Raspbian that has
>Tinc v1.1
>> to update a installed Tinc v1.0 from command apt-get?
>
>thankfully the