I think this is what "indirectdata = yes" is used for in the host files?<br><br><div class="gmail_quote">On Mon, Feb 21, 2011 at 8:00 PM, <span dir="ltr"><<a href="mailto:kolesnikov@infonetwork.ru">kolesnikov@infonetwork.ru</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">Hi<br>
<br>
I'm trying to implement a scheme in which the nodes will have a direct UDP tunnel to each other.<br>
First, all nodes make connection with one public node, and then make connections with each other.<br>
<br>
And I came across the following problem:<br>
Remotely located nodes can establish a direct UDP connection, but the nodes that are in the same local network can not, and all traffic goes through the public node.<br>
In the log files I see that the nodes can not agree on the MTU.<br>
<br>
1298030480 tinc.vpn[4056]: No response to MTU probes from client_01<br>
<br>
I understand this so that local nodes can not receive messages MTU probe from each other. Although from the remote nodes they successfully receive these messages.<br>
<br>
Tell me please, how can I solve this problem?<br>
<br>
<br>
<br>
Additional information:<br>
<br>
I have 4 nodes:<br>
1) VPNGATE - public node and all the other nodes are connected with it.<br>
2) CLIENT_01, CLIENT_02 - nodes are located in the same LAN.<br>
3) CLIENT_03 - remotely located node.<br>
<br>
<br>
=== VPNGATE ===<br>
tinc/vpn/hosts/vpngate<br>
tinc/vpn/hosts/client_01<br>
tinc/vpn/hosts/client_02<br>
tinc/vpn/hosts/client_03<br>
<br>
... tinc.conf:<br>
AddressFamily = ipv4<br>
BindToAddress = x.x.x.x (public IP address)<br>
BindToInterface = eth0<br>
Name = vpngate<br>
Device = /dev/net/tun<br>
PrivateKeyFile = /etc/tinc/vpn/rsa_key.priv<br>
Mode = switch<br>
<br>
<br>
=== CLIENT_0X ===<br>
tinc/vpn/hosts/vpngate<br>
tinc/vpn/hosts/client_0X<br>
<br>
... tinc.conf:<br>
AddressFamily = ipv4<br>
Name = client_0X<br>
ConnectTo = vpngate<br>
Interface = tinc.vpn<br>
PrivateKeyFile = C:\Program Files\tinc\vpn\rsa_key.priv<br>
Mode = switch<br>
<br>
<br>
=== HOST FILES ===<br>
VPNGATE:<br>
Compression = 9<br>
Address = x.x.x.x (public IP address)<br>
Subnet = <a href="http://192.168.10.0/24" target="_blank">192.168.10.0/24</a><br>
Port = 655<br>
-----BEGIN RSA PUBLIC KEY-----<br>
<br>
CLIENT_0X:<br>
Compression = 9<br>
Subnet = 192.168.10.X/32<br>
-----BEGIN RSA PUBLIC KEY-----<br>
<br>
<br>
and when I have full connectivity:<br>
<br>
ping CLIENT_01 ---> VPNGATE = 150 ms<br>
ping CLIENT_01 ---> CLIENT_03 = 15 ms<br>
ping CLIENT_01 ---> CLIENT_02 = 300 ms<br>
<br>
<br>
Best regards,<br>
Dmitry Kolesnikov<br>
<br>
_______________________________________________<br>
tinc mailing list<br>
<a href="mailto:tinc@tinc-vpn.org">tinc@tinc-vpn.org</a><br>
<a href="http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc" target="_blank">http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc</a><br>
</blockquote></div><br>