Promox 4.2 running on 2 nodes + 1 quorum = total 3 servers. All of them have tinc 1.0.24 running. On very rare occasions (every few days or 1~2 weeks), my website hosted on this proxmox node will throw cloudflare 522 connection timed out for few seconds or few minutes: https://support.cloudflare.com/hc/en-us/articles/200171906-Error-522-Connection-timed-out This problem has been driving me crazy. I'm not sure, but I suspect this is caused by tinc vpn that somehow got disconnected. root at node1pve:/# iperf -s ------------------------------------------------------------ Server listening on TCP port 5001 TCP window size: 4.00 KByte (default) ------------------------------------------------------------ [ 4] local 192.168.xxx.xxx port 5001 connected with 192.168.xxx.xxx port 13394 [ ID] Interval Transfer Bandwidth [ 4] 0.0-10.1 sec 1.02 GBytes 868 Mbits/sec root at node2pve:/# iperf -c node1pve ------------------------------------------------------------ Client connecting to node1pve, TCP port 5001 TCP window size: 45.0 KByte (default) ------------------------------------------------------------ [ 3] local 192.168.xxx.xxx port 13394 connected with 192.168.xxx.xxx port 5001 [ ID] Interval Transfer Bandwidth [ 3] 0.0-10.0 sec 1.02 GBytes 876 Mbits/sec root at node3pve:/# iperf -c node1pve ------------------------------------------------------------ Client connecting to node1pve, TCP port 5001 TCP window size: 45.0 KByte (default) ------------------------------------------------------------ [ 3] local 192.168.xxx.xxx port 55336 connected with 192.168.xxx.xxx port 5001 [ ID] Interval Transfer Bandwidth [ 3] 0.0-10.0 sec 1.06 GBytes 907 Mbits/sec /etc/tinc/vpn/tinc.conf: Name = node1pve AddressFamily = ipv4 Device = /dev/net/tun Mode = switch ConnectTo = node2pve Digest = none Cipher = none What should I do? Maybe some setting on tinc.conf file? Thanks :) Best regards, John. -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://www.tinc-vpn.org/pipermail/tinc/attachments/20160716/e99d9e89/attachment.html>
On Sat, Jul 16, 2016 at 07:04:08AM +0700, John Lewis wrote:> Promox 4.2 running on 2 nodes + 1 quorum = total 3 servers. > All of them have tinc 1.0.24 running. > > On very rare occasions (every few days or 1~2 weeks), my website hosted on > this proxmox node will throw cloudflare 522 connection timed out for few > seconds or few minutes: > https://support.cloudflare.com/hc/en-us/articles/200171906-Error-522-Connection-timed-out > > This problem has been driving me crazy. I'm not sure, but I suspect this is > caused by tinc vpn that somehow got disconnected.I don't see anything wrong with your configuration. I'd first make sure that it is actually tinc that got disconnected. Start tinc with debugging enabled (at least debug level 1, which logs (dis)connections, although level 3 may be more informative). If there is no disconnection going on when you get the connection timeouts, then try to find out what is going on during that time. -- Met vriendelijke groet / with kind regards, Guus Sliepen <guus at tinc-vpn.org> -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 819 bytes Desc: Digital signature URL: <http://www.tinc-vpn.org/pipermail/tinc/attachments/20160725/9c40435b/attachment.sig>
Reasonably Related Threads
- How does tinc server handle the case one client's key file is removed after connection
- message error NT_STATUS_OBJECT_NAME_NOT_FOUND regulary in the log
- message error NT_STATUS_OBJECT_NAME_NOT_FOUND regulary in the log
- icecast dies regulary
- Tinc 1.0.24 build failed on OSX Mavericks