traffic not going through tunnel
Soeren Malchow
soeren.malchow at mcon.net
Tue Dec 22 20:15:05 CET 2009
Dear Guus,
just for reference, the firewall that was inbetween is an OpenBSD 4.6, and there was no difference whether we enabled or disabled scrubbing of fragmented packages, we also saw that the packages were leaving the external interface of the firewall, but they were not received by the opposite VPN endpoint which is Ubuntu ( self firewalling vpn endpoint ).
Thanks again
Soeren
-----Original Message-----
From: tinc-bounces at tinc-vpn.org [mailto:tinc-bounces at tinc-vpn.org] On Behalf Of Guus Sliepen
Sent: Dienstag, 22. Dezember 2009 20:07
To: tinc at tinc-vpn.org
Subject: Re: traffic not going through tunnel
On Tue, Dec 22, 2009 at 07:00:11PM +0100, Soeren Malchow wrote:
> no, we were using the latest vesion in Ubuntu Hardy, since it is the
> current LTS version, we upgraded from the launchpad.net PPAs
>
> deb http://ppa.launchpad.net/dnjl/ppa/ubuntu YOUR_UBUNTU_VERSION_HERE
> main deb-src http://ppa.launchpad.net/dnjl/ppa/ubuntu
> YOUR_UBUNTU_VERSION_HERE main
>
> and i works immediately after that.
Great! Older versions of tinc did not support PMTUDiscovery in switch mode, and would let UDP packets be fragmented. And unfortunately some firewalls drop fragments.
--
Met vriendelijke groet / with kind regards,
Guus Sliepen <guus at tinc-vpn.org>
More information about the tinc
mailing list