tcp-only still needed?
Guus Sliepen
guus at tinc-vpn.org
Tue Nov 17 13:58:05 CET 2009
On Mon, Nov 16, 2009 at 05:12:04PM +0100, Andreas Ziegler wrote:
> we are using tinc in switched mode for over a year now, currently with
> 18 clients which are connected 24 hours a day and many which aren't
> connected the whole day, also.
> If i'm reading the changes from 1.0.9 to 1.0.10 and 1.0.11 correctly,
> tinc should work now, although "TCPOnly = yes" isn't set in the config
> files of clients which are behind a NAT firewall, e.g. a normal VDSL
> connection with a simple customer-router.
> But it doesn't work for us, which wouldn't be a big problem, but perhaps
> it is interesting for you.
It should work without TCPOnly = yes, but if you are using switch mode, you
have to add PMTUDiscovery = yes. The latter option is enabled by default in
router mode, but not in switch mode. Try it out and let us know if that works
for you.
--
Met vriendelijke groet / with kind regards,
Guus Sliepen <guus at tinc-vpn.org>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 198 bytes
Desc: Digital signature
URL: <http://www.tinc-vpn.org/pipermail/tinc/attachments/20091117/a9b25a64/attachment.pgp>
More information about the tinc
mailing list