<div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;"><div class="im">> So I am attempting to add a 2nd vpn to my existing setup and for some reason<br>
> I can't seem to get it to work quite right.<br>
><br>
> The issue I'm having right now is successful execution of the tinc-up<br>
> script. It's probably something obvious but after several days I still<br>
> don't see what I'm missing. I can see in syslog that<br>
> "Script tinc-up exited with non-zero status 1"<br>
<br>
</div>Try running the script by hand after you started tinc.<br></blockquote><div><br></div><div>Works fine when I run the tinc-up script by hand after the system has booted. </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<div class="im"><br>
> -rwxr-xr-x 1 root root 887 2010-03-07 11:09 rsa_key.priv<br>
</div><div class="im">> -rw-r--r-- 1 root root 1679 2010-12-24 11:09 rsa_key.priv<br>
<br>
</div>Why are your private keys world readable?<br></blockquote><div><br></div><div>Artifact of migrating my installation and copying everything over to an anonymous access cifs share until the new system was ready. Thanks for pointing that out. Looks like I'm going to have a lot of permissions fixing to do.</div>
<div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<div class="im"><br>
> donald@Donald-TincVM:/etc/tinc$ cat ./alan/tinc-up<br>
> #!/bin/sh<br>
> ifconfig alan 0.0.0.0<br>
> ifconfig alan up<br>
><br>
> brctl addif bridge alan<br>
> #<br>
<br>
</div>Hm, that looks fine to me... but try running it by hand and see what kind of<br>
error message it prints.<br></blockquote><div><br></div><div>So, I wasn't getting an error message running the script by hand.</div><div><br></div><div>What occurred to me this morning while re-reading this is that perhaps the tinc-up script for the tinc.alan instance is running too soon, and attempted to add the alan interface to a bridge that has not yet been created by the tinc.vpn instance.</div>
<div> </div><div>So, I removed alan from nets.boot, and at the bottom of the tinc.vpn tinc-up script I added /user/sbin/tincd -n alan</div><div><br></div><div>Now, everything is coming up as it should. Apparently when tinc.alan is configured to start by way of nets.boot, it's being started too soon for my particular arrangement.</div>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<font color="#888888"><br>
--<br>
Met vriendelijke groet / with kind regards,<br>
Guus Sliepen <<a href="mailto:guus@tinc-vpn.org">guus@tinc-vpn.org</a>><br>
</font><br>-----BEGIN PGP SIGNATURE-----<br>
Version: GnuPG v1.4.10 (GNU/Linux)<br>
<br>
iEYEARECAAYFAk0ZqoAACgkQAxLow12M2nvYRgCcDR4iWmHyFdbZZ0WRvcgFcktu<br>
cDIAn1TyrZpLJcJMsWYMQQ6OxUxc3n08<br>
=NKa7<br>
-----END PGP SIGNATURE-----<br>
<br>_______________________________________________<br>
tinc mailing list<br>
<a href="mailto:tinc@tinc-vpn.org">tinc@tinc-vpn.org</a><br>
<a href="http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc" target="_blank">http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc</a><br>
<br></blockquote></div><br>