Hi, We are trying to set up tinc for playing lan games over the internet. The three of us are running tinc, can ping each other and browse shared folders. yes, windows :| However we cannot connect because we don't show up in the game lobby. The games usually require udp ports to be open, but I think these are all open once we establish the tinc tunnel. Also, testing with all computers in the DMZ did not solve our problem. Does anyone have ideas as to what more we can try to make this work? Many thanks in advance, Arjen PS we tried hamachi.cc but it is way too slow. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://brouwer.uvt.nl/pipermail/tinc/attachments/20061104/b2d4fc1b/attachment.html
I have the same thing set up- because of how certain games use the 'lan lobby', it only broadcasts on the local subnets. IE, if your IP subnet is 192.168.1.0/24 and your friends is 192.168.2.0/24, then there are two separate 'lan lobby' broadcasts that are going to occur. You either have to: 1. Setup a IPTABLES firewall to mangle the packets and rebroadcast 2. Write a program to forward these broadcasts into the other subnets 3. Use the 'direct connect' feature in most games, where you enter the hosts IP address We use options 3. r Russell Handorf < < < < > > > > The information transmitted is intended only for the person(s) or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination, or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is prohibited. If you received this in error, please contact the sender and delete the material from any computer. Arjen Geerse wrote:> Hi, > > We are trying to set up tinc for playing lan games over the internet. > > The three of us are running tinc, can ping each other and browse > shared folders. yes, windows :| > > However we cannot connect because we don't show up in the game lobby. > > The games usually require udp ports to be open, but I think these are > all open once we establish the tinc tunnel. > > Also, testing with all computers in the DMZ did not solve our problem. > > Does anyone have ideas as to what more we can try to make this work? > > Many thanks in advance, > > Arjen > > PS we tried hamachi.cc but it is way too slow. > ------------------------------------------------------------------------ > > _______________________________________________ > tinc mailing list > tinc@tinc-vpn.org > http://brouwer.uvt.nl/cgi-bin/mailman/listinfo/tinc >
Hi, Thanks for all your input, things are getting clearer now. Actually we got it working with mode = switch and redundant connectTo's (everybody connecting to everybody). However, this only works with 2 persons. As I understand, we need to broadcast all traffic from the vpn subnet to our local subnets (or the other way around) We tried bridging (from windows) the local connections with the Tap adapter, but this breaks the wan connection. Is it useful to assign a gateway to the tap adapter, and use the local gateway address for that? Or are we looking in the wrong direction? I wish I had paid attention in network class :( Kind regards, Arjen On 11/5/06, sich <sich@cafe-philo.net> wrote:> > Guus Sliepen a ?crit : > > On Sat, Nov 04, 2006 at 07:10:05PM -0500, Russell Handorf wrote: > > > > 4. Use Mode = switch, and use bridging if necessary. > > > > This works with any network protocol, not just UDP broadcasts. However, > > option 3 is the best option, if it is available. > > > This option work fine in all situation. Juste take care about dhcp > request :) > > sich > _______________________________________________ > tinc mailing list > tinc@tinc-vpn.org > http://brouwer.uvt.nl/cgi-bin/mailman/listinfo/tinc >-------------- next part -------------- An HTML attachment was scrubbed... URL: http://brouwer.uvt.nl/pipermail/tinc/attachments/20061108/f50d2a5b/attachment.html
On Sun, Nov 12, 2006 at 03:51:35PM +0100, Arjen Geerse wrote:> adapter. This turned out to be caused by my network card not being > promiscuous :P > http://support.microsoft.com/default.aspx?scid=KB;EN-US;Q302348&ID=KB;EN-US;Q302348& > > Now i can succesfully bridge the cards. However once I add the tap adapter > to the bridge, i cannot ping my VPN ip. If I leave it out of the bridge i > can. Is this normal?That depends. Maybe the bridge interface is configured different than the tap interface? Once bridged, the tap interface becomes a slave to the bridge interface, and all settings (address, netmask, etc) are inherited from the bridge interface, as far as I know.> In tinc.conf I use mode=switch, in some older documentation is saw > mode=bridge exists as well, is there any difference? And should my peers use > mode = switch as well?There is no bridge mode, I think I wrote that by accident, and I probably meant to say switch mode. Everyone in the VPN should use the same mode. -- Met vriendelijke groet / with kind regards, Guus Sliepen <guus@tinc-vpn.org> -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: Digital signature Url : http://brouwer.uvt.nl/pipermail/tinc/attachments/20061112/2c417116/attachment.pgp