On Mon, Feb 12, 2001 at 11:35:42AM +0100, Bart Friederichs wrote:
> I created a VPN succesfully with two internet-connected hosts. But both
hosts
> also have a LAN attached to them. One LAN has NW address 10.1.1.0/24 and
the
> other 10.1.3.0/24. How should I set up firewall rules (on the
tinc-connected
> hosts) and route definitions (on the other hosts of the LANs) to let for
> example 10.1.1.11 connect to 10.1.3.12? I have been playing around a bit
with
> some things I thought were right, but they weren't (no ping replys).
Make sure that both tap devices accepts packets for both 10.1.1.0/24 and
10.1.3.0/24, for example for giving them one 10.1.0.0/16 address. Put
10.1.1.0/24 in the host configuration file for the tinc daemon in the
10.1.1.0/24 network, and 10.1.3.0/24 for the other one ofcourse. Then tinc
will do the routing for you.
You don't need any firewall rules.
-------------------------------------------
Met vriendelijke groet / with kind regards,
Guus Sliepen <guus@sliepen.warande.net>
-------------------------------------------
See also: tinc.nl.linux.org
kernelbench.org
-------------------------------------------
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 232 bytes
Desc: not available
Url :
brouwer.uvt.nl/pipermail/tinc/attachments/20010212/92240b87/attachment.pgp