<div dir="ltr">Yes, I am suggesting those rules I mentioned when you have Local Discovery enabled. <div>Let me see if I am understanding correctly. </div><div>You now have Local Discovery enabled, and you have applied some firewall rules that are currently blocking Local Discovery over the VPN.</div>
<div><div class="gmail_extra">It sounds like, now that you have applied these firewall rules, Local Discovery is not working with your actual local machines, and from what you can tell, Tinc is not sending broadcast packets.</div>
<div class="gmail_extra"><br></div><div class="gmail_extra">If that is all correct, then I am suggesting your firewall rules are blocking Tinc's Local Discovery on all interfaces.</div><div class="gmail_extra"><br></div>
<div class="gmail_extra" style>You Said.</div><div class="gmail_extra"><span style="font-family:arial,sans-serif;font-size:13px">For now, I went with the iptables solution and discovery is no longer</span><br style="font-family:arial,sans-serif;font-size:13px">
<span style="font-family:arial,sans-serif;font-size:13px">made on the tunnel. However, for some reason Tinc stopped doing local</span><br style="font-family:arial,sans-serif;font-size:13px"><span style="font-family:arial,sans-serif;font-size:13px">discovery completely - I do not see any broadcasts on the LAN. I simply</span><br style="font-family:arial,sans-serif;font-size:13px">
<span style="font-family:arial,sans-serif;font-size:13px">set LocalDiscovery = yes in tinc.conf, but no broadcasts seem to happen.</span></div><div class="gmail_extra"><span style="font-family:arial,sans-serif;font-size:13px"><br>
</span></div><div class="gmail_extra" style><span style="font-family:arial,sans-serif;font-size:13px">I am suggesting that Tinc is still attempting to send broadcasts, but your iptables rules are preventing it, just as they are preventing broadcasts over the vpn.</span></div>
<div class="gmail_extra" style><span style="font-family:arial,sans-serif;font-size:13px"><br></span></div><div class="gmail_extra" style><span style="font-family:arial,sans-serif;font-size:13px">What are your current set of firewall rules you are currently using?</span></div>
<div class="gmail_extra" style><span style="font-family:arial,sans-serif;font-size:13px"><br></span></div><div class="gmail_extra" style><span style="font-family:arial,sans-serif;font-size:13px">Lance</span></div><div class="gmail_extra" style>
<br></div><div class="gmail_extra"><font face="arial, sans-serif"><br></font><br><div class="gmail_quote">On Thu, Apr 4, 2013 at 3:47 PM, Dominik George <span dir="ltr"><<a href="mailto:nik@naturalnet.de" target="_blank">nik@naturalnet.de</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex">Hi,<br>
<div class="im"><br>
> Maybe a hint at least, if at all useful.<br>
<br>
</div>Unfortunately not useful at all. Please do not take this as an offense,<br>
but neither will disabling local discovery make local discovery work nor<br>
will anotehr set of iptables rules change anything - I stated that the<br>
rules are already in place and the problem with broadcasts on the tunnel<br>
is solved.<br>
<br>
The issue I now have is that I cannot make out when tinc will send out<br>
broadcasts - it does not do so on startup.<br>
<br>
-nik<br>
<div class="im"><br>
--<br>
* mirabilos is handling my post-1990 smartphone *<br>
<mirabilos> Aaah, it vibrates! Wherefore art thou, demonic device??<br>
<br>
</div><div class=""><div class="h5">PGP-Fingerprint: 3C9D 54A4 7575 C026 FB17 FD26 B79A 3C16 A0C4 F296<br>
</div></div><br>_______________________________________________<br>
tinc mailing list<br>
<a href="mailto:tinc@tinc-vpn.org">tinc@tinc-vpn.org</a><br>
<a href="http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc" target="_blank">http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc</a><br>
<br></blockquote></div><br></div></div></div>