<p dir="ltr">Just a heads up I'm working on a Nico's module for tinc if you are interested in testing it.</p>
<p dir="ltr"><a href="https://github.com/wkennington/nixpkgs/tree/master.tincd">https://github.com/wkennington/nixpkgs/tree/master.tincd</a></p>
<p dir="ltr">You are going to need my users patch yo add the extra uids needed for this to work at the moment.</p>
<p dir="ltr"><a href="https://github.com/wkennington/nixpkgs/tree/master.users">https://github.com/wkennington/nixpkgs/tree/master.users</a></p>
<p dir="ltr">You might also want to check out my addition of the tinc1.1 prerelease.</p>
<p dir="ltr"><a href="https://github.com/wkennington/nixpkgs/tree/master.tinc">https://github.com/wkennington/nixpkgs/tree/master.tinc</a></p>
<p dir="ltr">Best,<br>
William</p>
<div class="gmail_quote">On Aug 26, 2014 11:00 AM, "Zia Syed" <<a href="mailto:xia.syed@gmail.com">xia.syed@gmail.com</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div dir="ltr">Ok i've got it working. <div><br></div><div>I used the ifconfig command, but removed the netmask and it worked.</div><div><br></div><div>like this</div><div>ifconfig $INTERFACE 192.168.1.10<br></div><div>
<br></div><div>whereas this didn't work</div><div>ifconfig $INTERFACE 192.168.1.10 netmask 255.255.255.0<br></div><div><br></div><div>Thanks guys. </div><div><br></div><div>Zia</div></div><div class="gmail_extra"><br>
<br><div class="gmail_quote">On Tue, Aug 26, 2014 at 10:40 AM, Zia Syed <span dir="ltr"><<a href="mailto:xia.syed@gmail.com" target="_blank">xia.syed@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div dir="ltr">Thanks Guus. That works, but I am still not about to route traffic between the nodes. tinc-up doesn't execute automatically, and when I manually try, i get <div>'RTNETLINK answers: File exists' </div>
<div>for</div><div><div>ip addr add 192.168.1.10 dev $INTERFACE</div><div><br></div></div><div>where $INTERFACE i pass as eno1. </div><div><br></div><div>On the tinc debug, i see this</div><div><br></div><div>Connection with esprit1 (67.169.32.18 port 655) activated</div>
<div>Sending ADD_SUBNET to esprit1 (67.169.32.18 port 655): 10 38d07b36 homer2 <a href="http://10.16.0.0/24#10" target="_blank">10.16.0.0/24#10</a></div><div>Sending 35 bytes of metadata to esprit1 (67.169.32.18 port 655)</div>
<div>Sending ADD_EDGE to everyone (BROADCAST): 12 7ae0f39b homer2 esprit1 67.169.32.18 655 c 78</div>
<div>Sending 49 bytes of metadata to esprit1 (67.169.32.18 port 655)</div><div>Flushing 84 bytes to esprit1 (67.169.32.18 port 655)</div><div>Got ADD_SUBNET from esprit1 (67.169.32.18 port 655): 10 5dc18841 esprit1 <a href="http://192.168.1.0/24#10" target="_blank">192.168.1.0/24#10</a></div>
<div>Forwarding ADD_SUBNET from esprit1 (67.169.32.18 port 655): 10 5dc18841 esprit1 <a href="http://192.168.1.0/24#10" target="_blank">192.168.1.0/24#10</a></div><div>Got ADD_EDGE from esprit1 (67.169.32.18 port 655): 12 1198c2b0 esprit1 homer2 12.249.58.54 655 c 78</div>
<div>Forwarding ADD_EDGE from esprit1 (67.169.32.18 port 655): 12 1198c2b0 esprit1 homer2 12.249.58.54 655 c 78 </div><div><div><br></div><div><br></div><div>Does my routing table looks alright?<div><br></div><div><div>[root@homer2:/etc/tinc/test]# route</div>
<div>
<div>Kernel IP routing table</div><div>Destination Gateway Genmask Flags Metric Ref Use Iface</div><div>default 10.16.0.1 0.0.0.0 UG 0 0 0 eno16777728</div><div>
10.16.0.0 * 255.255.0.0 U 0 0 0 eno16777728</div><div>192.168.1.0 * 255.255.255.0 U 0 0 0 eno16777728</div><div><br></div></div><div>[root@homer2:/etc/tinc/test]# ssh <a href="mailto:test@192.168.1.10" target="_blank">test@192.168.1.10</a></div>
<div>ssh: connect to host 192.168.1.10 port 22: No route to host</div></div><div><br></div><div><div>[root@esprit1:/etc/tinc/test]# route</div><div><div>Kernel IP routing table</div><div>Destination Gateway Genmask Flags Metric Ref Use Iface</div>
<div>default 192.168.1.1 0.0.0.0 UG 202 0 0 eno1</div><div>10.16.0.0 * 255.255.255.0 U 0 0 0 eno1</div><div>192.168.1.0 * 255.255.255.0 U 202 0 0 eno1</div>
<div><br></div></div><div>[root@esprit1:/etc/tinc/test]# ssh <a href="mailto:test@10.16.0.14" target="_blank">test@10.16.0.14</a></div><div>ssh: connect to host 10.16.0.14 port 22: No route to host</div></div><div><br></div>
<div>My host config for homer2 is </div>
<div><div>[root@esprit1:/etc/tinc/test]# cat hosts/homer2</div><div>Address = 10.16.0.14</div><div>Subnet = <a href="http://10.16.0.0/24" target="_blank">10.16.0.0/24</a></div></div><div><br></div><div>and for esprit1 </div>
<div><br></div>
<div><div>[root@homer2:/etc/tinc/test]# cat hosts/esprit1</div><div>Address = 67.169.32.18</div><div>Subnet = <a href="http://192.168.1.0/24" target="_blank">192.168.1.0/24</a></div></div><div><br></div><div>thanks,</div>
</div></div><div>
Zia</div></div><div class="gmail_extra"><br><br><div class="gmail_quote"><div><div>On Tue, Aug 26, 2014 at 1:43 AM, Guus Sliepen <span dir="ltr"><<a href="mailto:guus@tinc-vpn.org" target="_blank">guus@tinc-vpn.org</a>></span> wrote:<br>
</div></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div><div><div>On Mon, Aug 25, 2014 at 09:55:05PM -0700, Zia Syed wrote:<br>
<br>
> I'm trying to run Tinc on a NixOS machine, using the similar configuration<br>
> i had for Ubuntu. My home subnet is <a href="http://192.168.1.0/24" target="_blank">192.168.1.0/24</a> and my work is<br>
> <a href="http://10.16.0.0/24" target="_blank">10.16.0.0/24</a>. However, unlike ubuntu, when I start tincd on nixos, and try<br>
> to 'ifconfig $INTERFACE 192.168.1.10 netmask 255.255.255.0' in my tinc-up,<br>
> I loose network access on the box (no ping/ssh to the box). I see tun0<br>
> interface created, but no data flows.<br>
><br>
> eno1: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500<br>
> inet 192.168.1.10 netmask 255.255.255.0 broadcast 192.168.1.255<br>
</div>[...]<br>
<div>> #!/nix/store/ajxd1z42ql9qihdj1pa7in12iynf532g-bash-4.2-p45/bin/sh<br>
> #ifconfig $INTERFACE 192.168.1.10 netmask 255.255.255.0<br>
> ip route add <a href="http://10.16.0.0/24" target="_blank">10.16.0.0/24</a> dev $INTERFACE<br>
> ip link set dev $INTERFACE up<br>
<br>
</div>Like Saverio already said, you are configuring tun0 with exactly the<br>
same IP address and netmask as the eno1 interface. This will indeed<br>
cause you to lose network access. You can use the same IP address on<br>
tun0 as on eno1, but then the netmask should be different. Try this<br>
instead:<br>
<br>
#!/nix/store/ajxd1z42ql9qihdj1pa7in12iynf532g-bash-4.2-p45/bin/sh<br>
ip addr add 192.168.1.10 dev $INTERFACE<br>
<div><div>ip route add <a href="http://10.16.0.0/24" target="_blank">10.16.0.0/24</a> dev $INTERFACE<br>
ip link set dev $INTERFACE up<br>
<br>
</div></div><span><font color="#888888">--<br>
Met vriendelijke groet / with kind regards,<br>
Guus Sliepen <<a href="mailto:guus@tinc-vpn.org" target="_blank">guus@tinc-vpn.org</a>><br>
</font></span><br></div></div><div>_______________________________________________<br>
tinc mailing list<br>
<a href="mailto:tinc@tinc-vpn.org" target="_blank">tinc@tinc-vpn.org</a><br>
<a href="http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc" target="_blank">http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc</a><br>
<br></div></blockquote></div><br></div>
</blockquote></div><br></div>
<br>_______________________________________________<br>
tinc mailing list<br>
<a href="mailto:tinc@tinc-vpn.org">tinc@tinc-vpn.org</a><br>
<a href="http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc" target="_blank">http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc</a><br>
<br></blockquote></div>