Hello I am having a problem with a tinc VPN which is in switch mode. Read packet of 121 bytes from Linux tun/tap device (tap mode) Packet looping back to BVLAN996 (MYSELF)! I just had one end of the VPN up and connected to another network and it was running fine for a while and then it got the looping error. When I have the other end of the VPN up also it is happily sending packets, but when it receives traffic from the other end of the VPN it just starts the "Packet looping" error and starts dropping packets. It is running on CentOS 5.2 at both ends and is used to bridge another network over our own network thru the VPN. Does anyone have any ideas? What extra information can I post to make it easier to troubleshoot? Thanks Brent Ingram Private and Confidential This electronic mail message and any files transmitted with it are intended solely for the use of the addressee(s) and may contain information that is confidential or privileged. If you receive this message and you are not the intended addressee (or responsible for the delivery of the message to the intended addressee) please notify the author immediately, disregard the contents of this message and delete the message from your system. Please note that we accept no responsibility for viruses or any other malicious code in this email or any included attachments. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.tinc-vpn.org/pipermail/tinc/attachments/20081201/15015646/attachment.htm
Hi Brent, Please provide your configuration files so we can determine your setup. Kindest Regards, Mike Brent Ingram wrote:> > Hello > > > > I am having a problem with a tinc VPN which is in switch mode. > > /Read packet of 121 bytes from Linux tun/tap device (tap mode)/ > > /Packet looping back to BVLAN996 (MYSELF)!/ > > / / > > I just had one end of the VPN up and connected to another network and > it was running fine for a while and then it got the looping error. > > When I have the other end of the VPN up also it is happily sending > packets, but when it receives traffic from the other end of the VPN it > just starts the ?Packet looping? error and starts dropping packets. > > It is running on CentOS 5.2 at both ends and is used to bridge another > network over our own network thru the VPN. > > > > Does anyone have any ideas? What extra information can I post to make > it easier to troubleshoot? > > > > Thanks > > Brent Ingram > > > > > *Private and Confidential* > This electronic mail message and any files transmitted with it are > intended solely for the use of the addressee(s) and may contain > information that is confidential or privileged. If you receive this > message and you are not the intended addressee (or responsible for the > delivery of the message to the intended addressee) please notify the > author immediately, disregard the contents of this message and delete > the message from your system. Please note that we accept no > responsibility for viruses or any other malicious code in this email > or any included attachments. > ------------------------------------------------------------------------ > > _______________________________________________ > tinc mailing list > tinc at tinc-vpn.org > http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc >-------------- next part -------------- A non-text attachment was scrubbed... Name: pgpkeys.asc Type: application/pgp-keys Size: 3071 bytes Desc: not available Url : http://www.tinc-vpn.org/pipermail/tinc/attachments/20081201/bc4703d8/attachment.key
Hi Mike Here they are below. Tinc.conf(BVPN) Name = BVLAN996 Device = /dev/net/tap Mode = switch ConnectTo = WVLAN996 Tinc.conf(WVPN) Name = WVLAN996 Device = /dev/net/tap Mode = switch Hosts/BVLAN996 Address = boppbvpn Port = 665 Hosts/WVLAN996 Address = boppwvpn Port = 665 Tinc-up for both is basically the same. #!/bin/sh ifconfig VLAN996 0.0.0.0 brctl addif br996 VLAN996 ifconfig VLAN996 up Hope that helps. But if there is anything I missed let me know. Thanks Brent -----Original Message----- From: Mike Bentzen [mailto:mike at goodlook.com.au] Sent: Monday, 1 December 2008 4:41 p.m. To: Brent Ingram Cc: tinc at tinc-vpn.org Subject: Re: Packet looping back Hi Brent, Please provide your configuration files so we can determine your setup. Kindest Regards, Mike Brent Ingram wrote:> > Hello > > > > I am having a problem with a tinc VPN which is in switch mode. > > /Read packet of 121 bytes from Linux tun/tap device (tap mode)/ > > /Packet looping back to BVLAN996 (MYSELF)!/ > > / / > > I just had one end of the VPN up and connected to another network and > it was running fine for a while and then it got the looping error. > > When I have the other end of the VPN up also it is happily sending > packets, but when it receives traffic from the other end of the VPN it > just starts the ?Packet looping? error and starts dropping packets. > > It is running on CentOS 5.2 at both ends and is used to bridge another > network over our own network thru the VPN. > > > > Does anyone have any ideas? What extra information can I post to make > it easier to troubleshoot? > > > > Thanks > > Brent Ingram > > > > > *Private and Confidential* > This electronic mail message and any files transmitted with it are > intended solely for the use of the addressee(s) and may contain > information that is confidential or privileged. If you receive this > message and you are not the intended addressee (or responsible for the > delivery of the message to the intended addressee) please notify the > author immediately, disregard the contents of this message and delete > the message from your system. Please note that we accept no > responsibility for viruses or any other malicious code in this email > or any included attachments. > ---------------------------------------------------------------------- > -- > > _______________________________________________ > tinc mailing list > tinc at tinc-vpn.org > http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc >
On Tue, Dec 02, 2008 at 07:49:35AM +1300, Brent Ingram wrote:> Device = /dev/net/tapIs this the device from the ethertap module? It is better to use the tun module and /dev/net/tun. If I remember correctly, the ethertap module used a fixed MAC address, this can cause conflicts if you run tinc in switch mode. Your configuration files look fine otherwise. If switching to the tun module does not help, could you use tcpdump to find out which packet (in particular, with which source and destination MAC address) is causing the "looping back to myself" message, and run "tincd -n <netname> -kUSR2" to let tinc dump the known MAC addresses at that moment to the syslog? -- Met vriendelijke groet / with kind regards, Guus Sliepen <guus at tinc-vpn.org> -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 197 bytes Desc: Digital signature Url : http://www.tinc-vpn.org/pipermail/tinc/attachments/20081202/830b1a00/attachment.pgp