<html><body>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left: 2px solid rgb(0, 0, 0); margin-right: 0px; font-size: 16px;">
Hi,</blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left: 2px solid rgb(0, 0, 0); margin-right: 0px; font-size: 16px;">
</blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left: 2px solid rgb(0, 0, 0); margin-right: 0px; font-size: 16px;">
has anybody a running setup with 2 or more tinc daemons in switch mode
which transport 8021q tagged traffic?</blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left: 2px solid rgb(0, 0, 0); margin-right: 0px; font-size: 16px;">
I am trying to connect two segments with about 4 x 1000 mac addresses
(distributed on different vlans). I am always running out of memory on one
side. This happens only on the side where the arp requests come
from.</blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left: 2px solid rgb(0, 0, 0); margin-right: 0px; font-size: 16px;">
Currently there is no unicast traffic between the sides; only broadcasted
arp requests.</blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left: 2px solid rgb(0, 0, 0); margin-right: 0px; font-size: 16px;">
It looks like tincd reserves memory with each arp request which isn't
freed afterwards or<br />
tincd builds internal structures for the arp cache, based on the wrong
information from the ethernet header, when I transport 8021q tagged
traffic.</blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left: 2px solid rgb(0, 0, 0); margin-right: 0px; font-size: 16px;">
</blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left: 2px solid rgb(0, 0, 0); margin-right: 0px; font-size: 16px;">
If I change my config from switch to hub mode, everything works
fine.</blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left: 2px solid rgb(0, 0, 0); margin-right: 0px; font-size: 16px;">
Are there any drawbacks If I use hub mode when there are only two connected
sites?</blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left: 2px solid rgb(0, 0, 0); margin-right: 0px; font-size: 16px;">
</blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left: 2px solid rgb(0, 0, 0); margin-right: 0px; font-size: 16px;">
Thanks for your help</blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left: 2px solid rgb(0, 0, 0); margin-right: 0px; font-size: 16px;">
</blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left: 2px solid rgb(0, 0, 0); margin-right: 0px; font-size: 16px;">
Florian</blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left: 2px solid rgb(0, 0, 0); margin-right: 0px; font-size: 16px;">
</blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left: 2px solid rgb(0, 0, 0); margin-right: 0px; font-size: 16px;">
-----Original Message-----<br />
From: "Florian Schoedel"
<Florian.Schoedel@meteringservice.de><br />
To: tinc-devel@tinc-vpn.org<br />
Date: Wed, 11 Jun 2014 19:40:45 +0200<br />
Subject: Fwd: memory leak<br />
<br />
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left-color: rgb(0, 0, 0); border-left-width: 2px; border-left-style:
solid; margin-right: 0px; font-size: 13px;">
Hi, </blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left-color: rgb(0, 0, 0); border-left-width: 2px; border-left-style:
solid; margin-right: 0px; font-size: 13px;">
I've observed this strange behaviour for a while in my test
environment. It looks like that all problems gone away when I switch to
"hub-mode" instead of switch mode. </blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left-color: rgb(0, 0, 0); border-left-width: 2px; border-left-style:
solid; margin-right: 0px; font-size: 13px;">
Does tinc still work properly in switch mode when I transport vlan tagged
traffic within that tunnel? In my environment the side, which is receiving
arp requests from the wired interface, is running out of memory. The other
side, which receivces the arp requests through the tunnel doesn't run
out of memory. </blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left-color: rgb(0, 0, 0); border-left-width: 2px; border-left-style:
solid; margin-right: 0px; font-size: 13px;">
</blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left-color: rgb(0, 0, 0); border-left-width: 2px; border-left-style:
solid; margin-right: 0px; font-size: 13px;">
Best regards</blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left-color: rgb(0, 0, 0); border-left-width: 2px; border-left-style:
solid; margin-right: 0px; font-size: 13px;">
</blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left-color: rgb(0, 0, 0); border-left-width: 2px; border-left-style:
solid; margin-right: 0px; font-size: 13px;">
</blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left-color: rgb(0, 0, 0); border-left-width: 2px; border-left-style:
solid; margin-right: 0px; font-size: 13px;">
Florian</blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left-color: rgb(0, 0, 0); border-left-width: 2px; border-left-style:
solid; margin-right: 0px; font-size: 13px;">
</blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left-color: rgb(0, 0, 0); border-left-width: 2px; border-left-style:
solid; margin-right: 0px; font-size: 13px;">
</blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left-color: rgb(0, 0, 0); border-left-width: 2px; border-left-style:
solid; margin-right: 0px; font-size: 13px;">
</blockquote>
<blockquote style="padding-right: 0px; padding-left: 5px; margin-left: 5px;
border-left-color: rgb(0, 0, 0); border-left-width: 2px; border-left-style:
solid; margin-right: 0px; font-size: 13px;">
<br />
-----Original Message-----<br />
From: "Florian Schoedel"
<Florian.Schoedel@meteringservice.de><br />
To: tinc-devel@tinc-vpn.org<br />
Date: Fri, 06 Jun 2014 09:50:33 +0200<br />
Subject: memory leak<br />
<br />
<div style="font-size: 13px; font-family: Tahoma; color: rgb(0, 0, 0);
font-weight: normal; font-style: normal; background-image: none;
background-attachment: scroll; background-origin: padding-box;
background-clip: border-box; background-color: rgba(0, 0, 0, 0);
background-size: auto; background-position: 0% 0%; background-repeat: repeat
repeat;">
Hi, </div>
<div style="font-size: 13px; font-family: Tahoma; color: rgb(0, 0, 0);
font-weight: normal; font-style: normal; background-image: none;
background-attachment: scroll; background-origin: padding-box;
background-clip: border-box; background-color: rgba(0, 0, 0, 0);
background-size: auto; background-position: 0% 0%; background-repeat: repeat
repeat;">
</div>
<div style="font-size: 13px; font-family: Tahoma; color: rgb(0, 0, 0);
font-weight: normal; font-style: normal; background-image: none;
background-attachment: scroll; background-origin: padding-box;
background-clip: border-box; background-color: rgba(0, 0, 0, 0);
background-size: auto; background-position: 0% 0%; background-repeat: repeat
repeat;">
I am running tinc on alpine linux 2.7.8 in 2 seperate environments. The
first environment is running for about a month without any problems.</div>
<div style="font-size: 13px; font-family: Tahoma; color: rgb(0, 0, 0);
font-weight: normal; font-style: normal; background-image: none;
background-attachment: scroll; background-origin: padding-box;
background-clip: border-box; background-color: rgba(0, 0, 0, 0);
background-size: auto; background-position: 0% 0%; background-repeat: repeat
repeat;">
The second environment causes some trouble. It looks like a memory leak
on the client side. </div>
<div style="font-size: 13px; font-family: Tahoma; color: rgb(0, 0, 0);
font-weight: normal; font-style: normal; background-image: none;
background-attachment: scroll; background-origin: padding-box;
background-clip: border-box; background-color: rgba(0, 0, 0, 0);
background-size: auto; background-position: 0% 0%; background-repeat: repeat
repeat;">
</div>
<div style="font-size: 13px; font-family: Tahoma; color: rgb(0, 0, 0);
font-weight: normal; font-style: normal; background-image: none;
background-attachment: scroll; background-origin: padding-box;
background-clip: border-box; background-color: rgba(0, 0, 0, 0);
background-size: auto; background-position: 0% 0%; background-repeat: repeat
repeat;">
tincd.conf:</div>
<div style="font-size: 13px; font-family: Tahoma; color: rgb(0, 0, 0);
font-weight: normal; font-style: normal; background-image: none;
background-attachment: scroll; background-origin: padding-box;
background-clip: border-box; background-color: rgba(0, 0, 0, 0);
background-size: auto; background-position: 0% 0%; background-repeat: repeat
repeat;">
</div>
<div style="font-size: 13px; font-family: Tahoma; color: rgb(0, 0, 0);
font-weight: normal; font-style: normal; background-image: none;
background-attachment: scroll; background-origin: padding-box;
background-clip: border-box; background-color: rgba(0, 0, 0, 0);
background-size: auto; background-position: 0% 0%; background-repeat: repeat
repeat;">
<div>
ConnectTo=ServerHost</div>
<div>
Device=/dev/net/tun</div>
<div>
Mode=switch</div>
<div>
Name=ClientHost</div>
<div>
PMTUDiscovery = yes</div>
<div>
DeviceType=tap</div>
<div>
PriorityInheritance = yes</div>
<div>
Compression=10</div>
<div>
</div>
<div>
hosts/ServerHost</div>
<div>
</div>
<div>
<div>
</div>
<div>
Address=XXXX</div>
<div>
PMTUDiscovery = yes</div>
<div>
PriorityInheritance = yes</div>
<div>
-----BEGIN RSA PUBLIC KEY-----</div>
<div>
XXX</div>
<div>
-----END RSA PUBLIC KEY-----</div>
<div>
</div>
<div>
</div>
<div>
</div>
<div>
Linux Kernel 3.10.40-0-grsec #1-Alpine SMP Wed May 14 07:59:37 UTC
2014 x86_64 Linux</div>
<div>
</div>
<div>
<div>
apk info tinc</div>
<div>
tinc-1.0.23-r1 description: tinc is a Virtual Private Network (VPN)
daemon</div>
<div>
tinc-1.0.23-r1 webpage: http://www.tinc-vpn.org/</div>
<div>
tinc-1.0.23-r1 installed size: 180224</div>
<div>
</div>
<div>
<div>
apk info openssl</div>
<div>
openssl-1.0.1h-r0 description: Toolkit for SSL v2/v3 and TLS v1</div>
<div>
openssl-1.0.1h-r0 webpage: http://openssl.org</div>
<div>
openssl-1.0.1h-r0 installed size: 589824</div>
<div>
</div>
<div>
<div>
apk info lzo</div>
<div>
lzo-2.03-r5 description: LZO -- a real-time data compression
library</div>
<div>
lzo-2.03-r5 webpage: http://www.oberhumer.com/opensource/lzo</div>
<div>
lzo-2.03-r5 installed size: 131072</div>
<div>
</div>
</div>
<div>
</div>
</div>
</div>
</div>
<div>
It doesn't matter if I bypass-security or disable / enable
compression. </div>
<div>
</div>
<div>
</div>
<div>
</div>
<div>
</div>
<div>
Can anybody confirm, that tinc is running on alpine linux with this
software versions?</div>
<div>
</div>
<div>
Thanks a lot</div>
<div>
</div>
<div>
</div>
<div>
Florian</div>
<div>
</div>
</div>
<div style="font-family: Tahoma; color: rgb(0, 0, 0); font-size: 13px;
font-weight: normal; font-style: normal; background-image: none;
background-attachment: scroll; background-origin: padding-box;
background-clip: border-box; background-color: rgba(0, 0, 0, 0);
background-size: auto; background-position: 0% 0%; background-repeat: repeat
repeat;">
</div>
</blockquote>
</blockquote>
<br>Thüga MeteringService GmbH, Sitz: Naila, eingetragen beim Amtsgericht in Hof, HRB: 4125
Geschäftsführer: Peter Hornfischer
StNr.: 223/140/10756, geführt beim Finanzamt Hof, USt-ID-Nr.: DE 246359579
Bankverbindung: BayernLB München, BLZ 700 500 00, Konto-Nr. 4113816
Geschäftsadresse Thüga MeteringService GmbH, Zum Kugelfang 2, 95119 Naila
Haftungsausschluss: Diese Nachricht erhält vertrauliche Informationen, welche nur für den Empfänger bestimmt sind. Falls Sie diese Nachricht irrtümlicherweise erhalten haben,
benachrichtigen Sie uns bitte sofort und vernichten Sie sämtliche Kopien (digital/Papier). Danke.
Disclaimer: The information contained in this message is confidential and may only be used by the intended recipient. If you received it in error,
please notify us immediately and destroy any copies (digital and paper). Thank you.
</body></html>