A VPN is switched mode
Guus Sliepen
guus at tinc-vpn.org
Mon Jun 27 08:54:41 CEST 2005
On Sun, Jun 26, 2005 at 12:40:43PM -0400, Marijn Vriens wrote:
Solved on IRC:
[...]
> What I want to do is hookup 5 distant linux routers into one bigger
> network, Since I need to transmit both unicast and multicast traffic,
> the VPN network has to be in "Mode = switch" [Assumption 1]
There was a bug in the 1.0.3 release that prevented broadcast packets
(including ARP) from being transmitted properly. Upgrading to 1.0.4
fixes that problem.
[...]
> And some other connections only work when the other host first pings.
That is a problem caused by stateful firewalls (that includes
masquerading firewalls).
> What i think I am doing wrong is setting the "Subnet = 192.168.20.2/32".
> However changing it to 192.168.20.0/24 doesn't solve the problem.
Subnet statements are ignored in switch mode, because tinc then operates
at the MAC layer, and doesn't look at IP addresses, just like a real
switch.
--
Met vriendelijke groet / with kind regards,
Guus Sliepen <guus at sliepen.eu.org>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://brouwer.uvt.nl/pipermail/tinc/attachments/20050627/adf49136/attachment.pgp
More information about the tinc
mailing list