How could I implicitly set indirect routing
Guus Sliepen
guus at tinc-vpn.org
Sat Nov 10 17:06:22 CET 2012
On Sat, Nov 10, 2012 at 10:48:33AM +0800, Misuzi wrote:
> I've created a VPN network using route mode with 8 nodes,for example 10.0.0.1-10.0.0.8
>
> I've already set Every node's subnet to 10.0.0.0/24 and set forwarding option to kernel.
In router mode, each node's Subnet should be unique. So in your case, you
should use /32 Subnets, not /24. I also don't think you should use the
Forwarding option.
> After I deleted the default route table(ip route 10.0.0.0/24 dev tun) and added the following route options:
>
> ip route add 10.0.0.1 dev tun
> ip route add 10.0.0.2 dev tun10 via 10.0.0.1
>
> and then I tried trace route 10.0.0.2 still showing me it directly sent to 10.0.0.2 without relaying from 10.0.0.1.
>
> What's wrong with that?
There is no such thing as a gateway route on a layer 3 network, the "via
10.0.0.1" part is simply ignored.
I do not know exactly what you want to accomplish, but I think you want to use
"Mode = switch". That way, the VPN works like a regular layer 2 switch and the
ip route commands work as you intended.
--
Met vriendelijke groet / with kind regards,
Guus Sliepen <guus at tinc-vpn.org>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: Digital signature
URL: <http://www.tinc-vpn.org/pipermail/tinc/attachments/20121110/35ab34bd/attachment.pgp>
More information about the tinc
mailing list