Moritz Maisel
2004-Jan-16 13:03 UTC
tinc connection only usable after ping from other side
Hi, I implemented a little client server scenario with tinc to give a notebook (connected to the "Server" via WLAN) access to the local lan (both Linux OS). I'll try to explain the problem I got: The configuration seems to be ok: The tinc-connection is set up correctly and after it is set up, the server can ping the client. The problem is, that after the connection is startet the client isn't able to ping the server (the server doesn't answer the ping requests). I first have to ping FROM the server TO the client. After that the client can also ping the server and has access to the LAN. Ok, I can tell the server to ping the client after connect via "hosts/<host>-up" to "open" the connection, but that is a pretty dirty workaround, I think. I also tried different routing/address scenarios but I always get this problem. So i suppose it's a tinc-problem. Does anyone of you have an idea that could help me? Thanks, Moritz Tinc: Discussion list about the tinc VPN daemon Archive: http://mail.nl.linux.org/lists/ Tinc site: http://tinc.nl.linux.org/
On Fri, Jan 16, 2004 at 12:03:31PM +0000, Moritz Maisel wrote:> The configuration seems to be ok: The tinc-connection is set up correctly > and after it is set up, the server can ping the client. > The problem is, that after the connection is startet the client isn't > able to ping the server (the server doesn't answer the ping requests). > I first have to ping FROM the server TO the client. After that the client > can also ping the server and has access to the LAN.It's caused by a masquerading firewall on your server's side. Fix your masquerading firewall (look at the examples on tinc's website) or use TCPOnly = yes (see the documentation).> I also tried different routing/address scenarios but I always get this > problem. So i suppose it's a tinc-problem.No it's not :) -- Met vriendelijke groet / with kind regards, Guus Sliepen <guus@sliepen.eu.org> -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: Digital signature Url : http://brouwer.uvt.nl/pipermail/tinc/attachments/20040116/2b03dc70/attachment.pgp