NFS4 over tinc hangs

Nikolaus Rath Nikolaus at rath.org
Mon Mar 12 16:08:32 CET 2012 

Guus Sliepen <guus-NnCthlHDAqpg9hUCZPvPmw at public.gmane.org> writes:
> On Sun, Mar 11, 2012 at 12:46:27PM -0400, Nikolaus Rath wrote:
>
>> >> The hbt, br0 (i.e., eth1 and vnet0) interfaces share a common
>> >> 192.168.1.0/24 network. Proxy ARP is enabled for br0 and hbt.
>> >
>> > Just out of curiosity, why do you use proxy ARP in this case instead of adding
>> > hbt to the bridge? I assume you are you using Mode = switch?
>> 
>> No, I am using Mode = router. I used the switch configuration in the
>> past, but from the tinc docs I got the impression that proxy ARP +
>> router is the preferred option if I do not need to tunnel broadcast or
>> non-IP packets.
>
> Well, if you don't need the broadcast packets and/or non-IP packets, and you do
> not already have a bridge setup, then it is much easier to just set up proxy
> ARP. But since you already have a bridge interface it would have been more easy
> for you to add the VPN interface to it :)
>
>> Are you saying that adding hbt to the bridge, disabling proxy ARP and
>> running with Mode = switch would be the better option for me? Then I'll
>> do that.
>
> In theory it should not matter in your case. But you can try it out if you
> want.

I tried the following configuration:

# cat tinc.conf 
Name = spitzer
Mode = switch

# cat tinc-up 
#!/bin/sh

ifconfig $INTERFACE 0.0.0.0
brctl addif br0 $INTERFACE
ifconfig $INTERFACE up

However, it doesn't seem to work. Pings from server to clients and
clients to server fail.

ifconfig says:


eth1      Link encap:Ethernet  HWaddr 00:26:b9:62:d9:58  
          inet6 addr: fe80::226:b9ff:fe62:d958/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:701664 errors:0 dropped:1 overruns:0 frame:0
          TX packets:364269 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          RX bytes:578687245 (578.6 MB)  TX bytes:42586227 (42.5 MB)
          Interrupt:48 Memory:d4000000-d4012800 

hbt       Link encap:Ethernet  HWaddr e6:2c:73:e9:53:0b  
          inet6 addr: fe80::e42c:73ff:fee9:530b/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:64 errors:0 dropped:0 overruns:0 frame:0
          TX packets:1040 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:500 
          RX bytes:6959 (6.9 KB)  TX bytes:43920 (43.9 KB)

br0       Link encap:Ethernet  HWaddr 00:26:b9:62:d9:58  
          inet addr:192.168.1.2  Bcast:192.168.1.255  Mask:255.255.255.0
          inet6 addr: fe80::226:b9ff:fe62:d958/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:513164 errors:0 dropped:0 overruns:0 frame:0
          TX packets:383370 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:605863639 (605.8 MB)  TX bytes:62221670 (62.2 MB)

# brctl show
bridge name	bridge id		STP enabled	interfaces
br0		8000.0026b962d958	yes		eth1
							hbt
virbr0		8000.000000000000	yes		

Tinc routing:

Mar 12 11:04:24 spitzer tinc.hbt[1292]: Statistics for Linux tun/tap device (tap mode) /dev/net/tun:
Mar 12 11:04:24 spitzer tinc.hbt[1292]:  total bytes in:       38874
Mar 12 11:04:24 spitzer tinc.hbt[1292]:  total bytes out:       6342
Mar 12 11:04:24 spitzer tinc.hbt[1292]: Nodes:
Mar 12 11:04:24 spitzer tinc.hbt[1292]:  athena at 128.59.151.185 port 655 cipher 419 digest 64 maclength 4 compression 11 options c status 001a nexthop athena via athena pmtu 1408 (min 1408 max 1408)
Mar 12 11:04:24 spitzer tinc.hbt[1292]:  inspiron at 128.59.145.39 port 655 cipher 419 digest 64 maclength 4 compression 11 options c status 001a nexthop inspiron via inspiron pmtu 1408 (min 1408 max 1408)
Mar 12 11:04:24 spitzer tinc.hbt[1292]:  spitzer at MYSELF cipher 0 digest 0 maclength 0 compression 0 options c status 0018 nexthop spitzer via spitzer pmtu 1518 (min 0 max 1518)
Mar 12 11:04:24 spitzer tinc.hbt[1292]: End of nodes.
Mar 12 11:04:24 spitzer tinc.hbt[1292]: Edges:
Mar 12 11:04:24 spitzer tinc.hbt[1292]:  athena to spitzer at 128.59.144.255 port 655 options c weight 34
Mar 12 11:04:24 spitzer tinc.hbt[1292]:  inspiron to spitzer at 128.59.144.255 port 655 options c weight 18
Mar 12 11:04:24 spitzer tinc.hbt[1292]:  spitzer to athena at 128.59.151.185 port 655 options c weight 34
Mar 12 11:04:24 spitzer tinc.hbt[1292]:  spitzer to inspiron at 128.59.145.39 port 655 options c weight 18
Mar 12 11:04:24 spitzer tinc.hbt[1292]: End of edges.
Mar 12 11:04:24 spitzer tinc.hbt[1292]: Subnet list:
Mar 12 11:04:24 spitzer tinc.hbt[1292]:  0:26:b9:62:d9:58#10 owner spitzer
Mar 12 11:04:24 spitzer tinc.hbt[1292]:  e6:2c:73:e9:53:b#10 owner spitzer
Mar 12 11:04:24 spitzer tinc.hbt[1292]:  192.168.1.2/32#10 owner spitzer
Mar 12 11:04:24 spitzer tinc.hbt[1292]:  192.168.1.7/32#10 owner inspiron
Mar 12 11:04:24 spitzer tinc.hbt[1292]:  192.168.1.20/32#10 owner athena
Mar 12 11:04:24 spitzer tinc.hbt[1292]:  192.168.1.0/24#15 owner spitzer
Mar 12 11:04:24 spitzer tinc.hbt[1292]: End of subnet list.

Server routing:

# route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
0.0.0.0         128.59.144.1    0.0.0.0         UG    100    0        0 eth0
128.59.144.0    0.0.0.0         255.255.248.0   U     0      0        0 eth0
192.168.1.0     0.0.0.0         255.255.255.0   U     0      0        0 br0
192.168.122.0   0.0.0.0         255.255.255.0   U     0      0        0 virbr0


Any suggestions?


Best,

   -Nikolaus

-- 
 »Time flies like an arrow, fruit flies like a Banana.«

  PGP fingerprint: 5B93 61F8 4EA2 E279 ABF6  02CF A9AD B7F8 AE4E 425C

More information about the tinc mailing list