Hello. I apologize in advance for my question -- it's seemingly trivial, but
I've spent countless hours on its solution to no avail. Basically, I have
two tinc servers:
Home:
Ethernet adapter LAN:
IP Address. . . . . . . . . . . . : 192.168.0.2
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.1
Ethernet adapter TINC:
IP Address. . . . . . . . . . . . : 192.168.1.1
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Default Gateway . . . . . . . . . :
tinc host file (relevant part):
Subnet = 192.168.0.0/16
Laptop:
Ethernet adapter LAN:
IP Address. . . . . . . . . . . . : 10.24.32.16
Subnet Mask . . . . . . . . . . . : 255.0.0.0
Default Gateway . . . . . . . . . : 10.54.99.1
Ethernet adapter TINC:
IP Address. . . . . . . . . . . . : 192.168.1.2
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Default Gateway . . . . . . . . . :
tinc host file (relevant part):
Subnet = 192.168.1.2/32
Both systems will normally be on different networks, of course, which are
firewalled and masqueraded. I've set them both up for TCPOnly, and I can get
them connected (Laptop -> Home). They can ping one another and communicate
(192.168.1.1 <-> 192.168.1.2) with no problems, however, the Laptop
machine
cannot see the rest of the Home network. i.e., from the laptop, I want to be
able to connect to 192.168.0.5, which is another machine on the Home network.
I've tried most logical setups, spent 6+ hours on it, read the help
documentation and examples over and over and over, etc, but can anyone give
me advice as to how to change my setup to make this work?
Thank you.
Charles Burnett
Tinc: Discussion list about the tinc VPN daemon
Archive: http://mail.nl.linux.org/lists/
Tinc site: http://tinc.nl.linux.org/
On Sun, 14 Sep 2003, Charles Burnett wrote:> >Home: > Ethernet adapter LAN: > IP Address. . . . . . . . . . . . : 192.168.0.2 > Subnet Mask . . . . . . . . . . . : 255.255.255.0 > Default Gateway . . . . . . . . . : 192.168.0.1 > > Ethernet adapter TINC: > IP Address. . . . . . . . . . . . : 192.168.1.1 > Subnet Mask . . . . . . . . . . . : 255.255.0.0 > Default Gateway . . . . . . . . . : > > tinc host file (relevant part): > Subnet = 192.168.0.0/16 > >Laptop: > Ethernet adapter LAN: > IP Address. . . . . . . . . . . . : 10.24.32.16 > Subnet Mask . . . . . . . . . . . : 255.0.0.0 > Default Gateway . . . . . . . . . : 10.54.99.1 > > Ethernet adapter TINC: > IP Address. . . . . . . . . . . . : 192.168.1.2 > Subnet Mask . . . . . . . . . . . : 255.255.0.0 > Default Gateway . . . . . . . . . : > > tinc host file (relevant part): > Subnet = 192.168.1.2/32 > >Both systems will normally be on different networks, of course, which are >firewalled and masqueraded. I've set them both up for TCPOnly, and I can get >them connected (Laptop -> Home). They can ping one another and communicate >(192.168.1.1 <-> 192.168.1.2) with no problems, however, the Laptop machine >cannot see the rest of the Home network. i.e., from the laptop, I want to be >able to connect to 192.168.0.5, which is another machine on the Home network. > >I've tried most logical setups, spent 6+ hours on it, read the help >documentation and examples over and over and over, etc, but can anyone give >me advice as to how to change my setup to make this work?Have you set a routing to your home lan? route add -net 192.168.0.0 netmask 255.255.255.0 gw 192.168.1.1 kr Christoph Tinc: Discussion list about the tinc VPN daemon Archive: http://mail.nl.linux.org/lists/ Tinc site: http://tinc.nl.linux.org/
On Sun, Sep 14, 2003 at 06:03:56PM -0000, Charles Burnett wrote:> Both systems will normally be on different networks, of course, which are > firewalled and masqueraded. I've set them both up for TCPOnly, and I can get > them connected (Laptop -> Home). They can ping one another and communicate > (192.168.1.1 <-> 192.168.1.2) with no problems, however, the Laptop machine > cannot see the rest of the Home network. i.e., from the laptop, I want to be > able to connect to 192.168.0.5, which is another machine on the Home network.Did you run tinc in router (the default) or switch mode? In the latter mode you have create a bridge interface and make the TINC and LAN interfaces slaves of the bridge interface. In router mode you need to do proxy-arp on the Home network for the laptop. If you do not want to bridge or proxy-arp, you should give the laptop its own subnet outside of the subnet of the Home network. -- Met vriendelijke groet / with kind regards, Guus Sliepen <guus@sliepen.eu.org> -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://brouwer.uvt.nl/pipermail/tinc/attachments/20030914/3008eeec/attachment.pgp
I apologize for the late reply -- I've been swamped at work and did not have time to test your suggestion. I added "Mode = switch" into both the home and laptop tinc.conf files, configured a bridge on the home machine with the LAN and TINC interfaces as slaves, et voila! It works! Thank you very much, Guus! Guus Sliepen <guus@sliepen.eu.org> said:> > Did you run tinc in router (the default) or switch mode? In the latter > mode you have create a bridge interface and make the TINC and LAN > interfaces slaves of the bridge interface. In router mode you need to do > proxy-arp on the Home network for the laptop. > > If you do not want to bridge or proxy-arp, you should give the laptop > its own subnet outside of the subnet of the Home network. > > -- > Met vriendelijke groet / with kind regards, > Guus Sliepen <guus@sliepen.eu.org> >-- Tinc: Discussion list about the tinc VPN daemon Archive: http://mail.nl.linux.org/lists/ Tinc site: http://tinc.nl.linux.org/