ping between nated hosts
Eric Estabrooks
eric at urbanrage.com
Tue Feb 17 16:00:53 CET 2009
Christian Lyra wrote:
> Hi,
>
>
>> >
>> > I´m using switch mode, and hosts B and C has IndirectMode enabled.
>> > Host A is in listen only mode (no ConnectTo set), hosts B and C
>> > connects to A. Everything works almost as expected... B and C
>> > connects to A, and they can ping each other, but ONLY after each
>> > other learns the other MAC thru A. What I mean is: if I start A,
>> > B, C, and try to ping C from B, ping will fail, but if I send a
>> > ping to A from C, then B will be able to ping C as it will learn
>> > the MAC of C thru A. If there´s no traffic between the hosts for a
>> > while, then the arp entries will expire from arp tables and the
>> > problem will happen again.
>>
>> This is probably caused by NAT or other stateful firewall rules. Try
>> adding TCPOnly = yes to your host config files, that should solve the
>> problem.
>>
>
> Indeed... this solves the problem but Statefull firewall rules should be
> satisfied with a short "PingInterval", shouldnt it? I would like to not
> use tcp if possible.
>
>
>
>
What about manually adding the arp or setting up a rarp daemon (or would
that be an arp proxy daemon), then you could still use udp.
Eric
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3254 bytes
Desc: S/MIME Cryptographic Signature
Url : http://www.tinc-vpn.org/pipermail/tinc/attachments/20090217/097070c4/attachment.bin
More information about the tinc
mailing list