Error during decryption of meta key
Martin Schürrer
martin at schuerrer.org
Sun Sep 30 19:14:57 CEST 2012
I haven't set any of those options.
Here's my network topology:
I've got two servers "alienvps" and "hetzner" (the DCs they are in)
hetzner's tinc.conf
Name = hetzner
ConnectTo = alienvps
hetzner's hosts/hetzner
Subnet = 172.20.0.10/32
Subnet = 172.20.0.20/32
Cipher = AES256
Digest = SHA1
-----BEGIN RSA PUBLIC KEY-----
...
-----END RSA PUBLIC KEY-----
hetzner's hosts/alienvps
Address = 199.167.197.209
Cipher = AES256
Digest = SHA1
-----BEGIN RSA PUBLIC KEY-----
...
-----END RSA PUBLIC KEY-----
alienvps's tinc.conf
Name = alienvps
ConnectTo = hetzner
alienvps's hosts/alienvps
Subnet = 172.20.0.11/32
Cipher = AES256
Digest = SHA1
-----BEGIN RSA PUBLIC KEY-----
...
-----END RSA PUBLIC KEY-----
alienvps's hosts/hetzner
Address = 188.40.114.12
Cipher = AES256
Digest = SHA1
-----BEGIN RSA PUBLIC KEY-----
...
-----END RSA PUBLIC KEY-----
iMartin is my laptop.
iMartin's tinc.conf
Device = /dev/tun1
Forwarding = off
# BindToInterface not supported on OS X
# BindToInterface = lo0
BindToAddress = 127.0.0.1
Name = iMartin
ConnectTo = hetzner
ConnectTo = alienvps
iMartin's hosts/hetzner
Address = 199.167.197.209
Cipher = AES256
Digest = SHA1
-----BEGIN RSA PUBLIC KEY-----
...
-----END RSA PUBLIC KEY-----
iMartin's hosts/alienvps
Address = 199.167.197.209
Cipher = AES256
Digest = SHA1
-----BEGIN RSA PUBLIC KEY-----
...
-----END RSA PUBLIC KEY-----
With this config right now iMartin can connect to alienvps only, and
is getting the encryption error on hetzner. OTOH two other clients
(with the same config as iMartin) can connect to both hetzner and
alienvps right now. Yesterday those two client's couldn't connect but
iMartin was connected to both hetzner and alienvps.
Any ideas?
Thanks,
Martin
More information about the tinc
mailing list