Option UDPOnly missing?
Guus Sliepen
guus at tinc-vpn.org
Mon Mar 20 21:45:04 CET 2017
On Mon, Mar 20, 2017 at 02:32:16PM +0100, borg at uu3.net wrote:
> I noticed that there is no UDPOnly option. Why so?
> I prefer to control traffic as much as possible..
>
> I belive, currently, when there is loss of connectivity,
> tinc tries TCP too to restore connectivity... If succeed,
> it needs to switch back to UDP then... Right?
>
> So, can tinc use only UDP? Or it needs TCP for some metadata
> communication?
Tinc needs TCP for its metadata communication. This requires reliable,
in-order transmission, which is exactly what TCP provides.
Tinc indeed switches to TCP for VPN traffic if UDP is not possible. It
should however switch back to UDP once that becomes available again. If
you don't want it to use TCP for VPN traffic, then you can set
PMTUDiscovery = no. This disables the probes tinc uses to detect if UDP
is possible. However, the probes also help with NAT traversal, so if you
are behind a NAT then this might completely break communication between
two peers.
--
Met vriendelijke groet / with kind regards,
Guus Sliepen <guus at tinc-vpn.org>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: Digital signature
URL: <http://www.tinc-vpn.org/pipermail/tinc-devel/attachments/20170320/cfa550c2/attachment.sig>
More information about the tinc-devel
mailing list