Configuration Help. Ping says Destination unreachable.
Guus Sliepen
guus at sliepen.eu.org
Sun Jun 8 15:30:09 CEST 2003
On Sun, Jun 08, 2003 at 07:53:39AM -0500, Shashank Khanvilkar wrote:
> OK.. I thought subnet meant the private subnet behind a firewall.
> Actually I am using a setup like the below:
It does indeed mean the private subnet behind the firewall.
> http://mia.ece.uic.edu/~papers/volans/networksetup.jpg
You don't need to have a seperate subnet for the tunnel, just use the
same address you have on the private subnet for the tunnel endpoints.
So no need for 192.168.254.200 and 192.168.254.201, just use 192.168.0.1
and 192.168.2.1.
Use Subnet = 192.168.0.0/24 for mia and Subnet = 192.168.2.0/24 for
zidler. Since the whole VPN is larger than a /24, you should use
something like this in tinc-up on both sides:
ifconfig $INTERFACE 192.168.0.0 netmask 255.255.0.0
> Now I get a new error..
[...]
> Jun 8 07:50:13 mia tinc.mia[12697]: Sending packet of 98 bytes to zidler
> (131.193.50.184 port 655)
> Jun 8 07:50:13 mia tinc.mia[12697]: No valid key known yet for zidler
> (131.193.50.184 port 655), queueing packet
This is not an error, it's just a debug message saying that symmetric
keys haven't been exchanged yet.
> Jun 8 07:50:13 mia tinc.mia[12697]: Flushing queue for zidler
> (131.193.50.184 port 655)
This message is logged after a key has been received,
> Jun 8 07:50:14 mia tinc.mia[12697]: Sending packet of 98 bytes to zidler
> (131.193.50.184 port 655)
That message tells you that a packet has indeed been sent from mia to
zidler, so everything is fine (as far as tinc is concerned).
--
Met vriendelijke groet / with kind regards,
Guus Sliepen <guus at sliepen.eu.org>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://brouwer.uvt.nl/pipermail/tinc/attachments/20030608/75a4aad1/attachment.pgp
More information about the Tinc
mailing list