<p dir="ltr">Hi, after trying for days I ended up with a working tinc configurazion of 2 subnets, now my goal is to add 2 more subnets and comunicate.<br>
I might seem dumb at this point but honestly I don't work in IT or Networking stuff, and so I dont have that deep knowledge.<br>
A little explanation of my configuration is</p>
<p dir="ltr">HOST A (VPN server)<br>
Public IP: 1.2.3.4<br>
tun0 Subnet = <a href="http://192.168.10.0/24">192.168.10.0/24</a><br>
tun0 IP = 192.168.10.1</p>
<p dir="ltr">HOST B (VPN Client configured in a Raspberry Pi)<br>
eth0 NET = 192.168.2.10 255.255.255.0 gw 192.168.2.1<br>
tun0 Subnet = <a href="http://192.168.10.0/24">192.168.10.0/24</a><br>
tun0 Subnet = <a href="http://192.168.2.0/24">192.168.2.0/24</a></p>
<p dir="ltr">HOST C (VPN Client configured in a Raspberry Pi)<br>
eth0 NET = 192.168.1.101 255.255.255.0 gw 192.168.1.1<br>
tun0 Subnet = <a href="http://192.168.10.0/24">192.168.10.0/24</a><br>
tun0 Subnet = <a href="http://192.168.1.0/24">192.168.1.0/24</a></p>
<p dir="ltr">HOST D (VPN Client configured in Android device, just accessing VPN Network)<br></p>
<p dir="ltr">Every Host have its own tinc-up set up like:</p>
<p dir="ltr">HOST A: <br>
#!/bin/sh<br>
ifconfig $INTERFACE 192.168.10.1 netmask 255.255.255.0<br>
route add -net <a href="http://192.168.1.0/24">192.168.1.0/24</a> dev $INTERFACE<br>
route add -net <a href="http://192.168.2.0/24">192.168.2.0/24</a> dev $INTERFACE<br>
route add -net <a href="http://192.168.3.0/24">192.168.3.0/24</a> dev $INTERFACE</p>
<p dir="ltr">HOST B:<br>
#!/bin/sh<br>
ifconfig $INTERFACE 192.168.10.2 netmask 255.255.255.0</p>
<p dir="ltr">HOST C:<br>
#!/bin/sh<br>
ifconfig $INTERFACE 192.168.10.3 netmask 255.255.255.0</p>
<p dir="ltr">HOST D:<br>
#!/bin/sh<br>
ifconfig $INTERFACE 192.168.10.4 netmask 255.255.255.0<br></p>
<p dir="ltr">Every Host have its own tinc.conf set up to connect to HOST A (Except for HOST A itself obviously) VPN is using router mode.<br>
Every Host have each other's host file in proper directory, containing PUB KEY + VPN SUBNET + HOST SUBNET</p>
<p dir="ltr">For HOST A:<br>
Address = XXXX.XXXXX.XX<br>
Subnet = <a href="http://192.168.10.1/32">192.168.10.1/32</a></p>
<p dir="ltr">For HOST B:<br>
Subnet = <a href="http://192.168.10.0/24">192.168.10.0/24</a><br>
Subnet = <a href="http://192.168.2.0/24">192.168.2.0/24</a></p>
<p dir="ltr">For HOST C:<br>
Subnet = <a href="http://192.168.10.0/24">192.168.10.0/24</a><br>
Subnet = <a href="http://192.168.1.0/24">192.168.1.0/24</a></p>
<p dir="ltr">For HOST D:<br>
Subnet = <a href="http://192.168.10.0/24">192.168.10.0/24</a></p>
<p dir="ltr">Every file is exactly the same on every HOST.</p>
<p dir="ltr">There are no problems when connecting, every host can connect to the server (HOST A) fine.<br>
>From HOST A I can ping Host A / Host B<br>
>From HOST B I can ping HOST A / Host B<br>
>From HOST C I can only ping myself<br>
>From HOST D I can only ping myself</p>
<p dir="ltr">After trying a lot of net add net remove and reading tons of replies to numerous questions online, after asking to irc I initially managed to work with 2 subnet seeing each others, but adding this two more definitely ruined the work.</p>
<p dir="ltr">My question is: what do I need to add in every conf/tinc-up file in order to let HOST A Access every single machine in every Subnet 192.168.1.* 192.168.2.* 192.168.3.* and eventually visa versa, what to add to every HOST B/C/D to be able to directly access every machine in every subnet as above.</p>
<p dir="ltr">HOST A route<br>
Kernel IP routing table<br>
Destination Gateway Genmask Flags Metric Ref Use Iface<br>
default 178.62.128.1 0.0.0.0 UG 0 0 0 eth0<br>
178.62.128.0 * 255.255.192.0 U 0 0 0 eth0<br>
192.168.1.0 * 255.255.255.0 U 0 0 0 tun0<br>
192.168.2.0 * 255.255.255.0 U 0 0 0 tun0<br>
192.168.3.0 * 255.255.255.0 U 0 0 0 tun0<br>
192.168.10.0 * 255.255.255.0 U 0 0 0 tun0</p>
<p dir="ltr">HOST B route<br>
Kernel IP routing table<br>
Destination Gateway Genmask Flags Metric Ref Use Iface<br>
0.0.0.0 192.168.2.1 0.0.0.0 UG 0 0 0 eth0<br>
192.168.2.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0<br>
192.168.10.0 0.0.0.0 255.255.255.0 U 0 0 0 tun0</p>
<p dir="ltr">HOST C route<br>
Kernel IP routing table<br>
Destination Gateway Genmask Flags Metric Ref Use Iface<br>
0.0.0.0 192.168.1.1 0.0.0.0 UG 0 0 0 eth0<br>
192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0<br>
192.168.10.0 0.0.0.0 255.255.255.0 U 0 0 0 tun0</p>
<p dir="ltr">My bad I'm not that handy with networking stuff.<br>
Any hint is appreciated.<br>
Thanks in advance</p>
<p dir="ltr"><font color="#888888">Marco</font><br></p>