thr3ads.net - tinc - what am I doing wrong? [Dec 2004]

If this information is useful, please help other people find it:
Share via:

Pedro Ruiz

2004-Dec-15 18:27 UTC

what am I doing wrong?

what am I doing wrong?

SERVER:

cat tinc.conf

Device=/dev/net/tun
Mode=switch
Name=server
PrivateKeyFile=/etc/tinc/vpn/rsa_key.priv

cat tinc-up

#!/bin/sh
ifconfig $INTERFACE 192.170.1.1 netmask
255.255.255.255

route add -host 192.170.1.2 dev $INTERFACE
route add -net 192.170.1.2 netmask 255.255.255.255 dev
$INTERFACE


cat hosts/server
Compression=9
Subnet=192.170.1.1/32
Address=192.169.1.1
-----BEGIN RSA PUBLIC KEY-----
......

cat hosts/client
Compression=9
Subnet=192.170.1.2/32
Address=192.169.1.2
-----BEGIN RSA PUBLIC KEY-----
....

ifconfig -a

vpn       Link encap:UNSPEC  HWaddr
00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
          inet addr:192.170.1.1  P-t-P:192.170.1.1 
Mask:255.255.255.255
          UP POINTOPOINT RUNNING NOARP MULTICAST 
MTU:1500  Metric:1
          RX packets:2 errors:0 dropped:0 overruns:0
frame:0
          TX packets:2 errors:0 dropped:0 overruns:0
carrier:0
          collisions:0 txqueuelen:10

wlan0     Link encap:Ethernet  HWaddr
00:11:95:85:7B:3E
          inet addr:192.169.1.1  Bcast:192.169.1.255 
Mask:255.255.255.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500 
Metric:1
          RX packets:335 errors:0 dropped:0 overruns:0
frame:0
          TX packets:284 errors:0 dropped:0 overruns:0
carrier:0
          collisions:0 txqueuelen:100

server and client connect but don't send any

Client:

Connected to server (192.169.1.1 port 655)
Connection with server (192.169.1.1 port 655)
activated



Thanks.


		
______________________________________________ 
Renovamos el Correo Yahoo!: ?250 MB GRATIS! 
Nuevos servicios, m?s seguridad 
http://correo.yahoo.es

Guus Sliepen

2004-Dec-15 18:45 UTC

head link

what am I doing wrong?

On Wed, Dec 15, 2004 at 06:27:43PM +0100, Pedro Ruiz wrote:
> what am I doing wrong?
[...]> Mode=switch
If you are using 1.0.3, try 1.0.2 or the latest version from our
Subversion repository, because there was a bug regarding broadcast
packets in switch mode.
> #!/bin/sh
> ifconfig $INTERFACE 192.170.1.1 netmask
> 255.255.255.255
> 
> route add -host 192.170.1.2 dev $INTERFACE
> route add -net 192.170.1.2 netmask 255.255.255.255 dev
> $INTERFACE
Can't you just simplify that to the following?

ifconfig $INTERFACE 192.170.1.1 netmask 255.255.255.252
> Subnet=192.170.1.1/32
Subnet statements don't have any effect in switch mode.
> ifconfig -a
> 
> vpn       Link encap:UNSPEC  HWaddr
> 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
>           inet addr:192.170.1.1  P-t-P:192.170.1.1 
> Mask:255.255.255.255
>           UP POINTOPOINT RUNNING NOARP MULTICAST 
> MTU:1500  Metric:1

That's not good... it should not be a pointopoint device. Which version
of tinc are you using, and did you perhaps create a persistent tun
device before starting tinc?

-- 
Met vriendelijke groet / with kind regards,
    Guus Sliepen <guus@sliepen.eu.org>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url :
http://brouwer.uvt.nl/pipermail/tinc/attachments/20041215/1026d68c/attachment.pgp

Reasonably Related Threads

Search for more apparently analagous threads

tinc - Dec 2004 - what am I doing wrong?

what am I doing wrong?

what am I doing wrong?

Reasonably Related Threads