<div dir="ltr">Thanks very much! It's alive! For others who are having problems, this is a summary of the differences I needed between Linux and OS X:<div><br></div><div>You'll need to install <a href="http://tuntaposx.sourceforge.net/" target="_blank">http://tuntaposx.sourceforge.net/</a> manually.</div><div><br></div><div>On tinc.conf:</div><div>> Linux<br></div><div><div>Name = ntwigg2014linux</div><div>AddressFamily = ipv4</div><div>Interface = dpsfVPN</div><div>ConnectTo = dpserver001</div></div><div>> Mac</div><div>Same, but remove the Interface line entirely</div><div><br></div><div>On tinc-up:</div><div>> Linux</div><div>ifconfig $INTERFACE 10.0.0.12 netmask 255.255.255.0<br></div><div>> Mac</div><div>ifconfig $INTERFACE <a href="http://10.0.0.12/24">10.0.0.12/24</a> 10.0.0.100 ; 10.0.0.100 is dpserver001 above</div><div>route add -net 10.0.0.0 10.0.0.12 255.255.255.0</div><div><br></div><div>With the files above, I can ping dpserver001 (10.0.0.100). My network is a star (all the endpoints go to dpserver001 for now). My windows box can ping the linux box, but not the mac box. The linux and mac boxes can't ping anyone except the server. That works fine for my usecase, but just a notable limitation for anyone else who is tinkering with this stuff.</div><div><br></div><div>Thanks again!</div><div><br></div></div><div class="gmail_extra"><br clear="all"><div><div class="gmail_signature"><div dir="ltr"><div style="font-family:arial;font-size:small"><font color="#38761d">Ned Twigg<br></font></div><div style="font-family:arial;font-size:small"><font color="#38761d">Lead Software Architect, DiffPlug LLC</font></div><div style="font-family:arial;font-size:small"><font color="#38761d">949-264-3433<br></font></div><div style="font-family:arial;font-size:small"><font color="#38761d">340 S Lemon Ave #3433, Walnut, CA 91789</font></div></div></div></div>
<br><div class="gmail_quote">On Thu, Jan 7, 2016 at 2:37 PM, pjv <span dir="ltr"><<a href="mailto:pjv@pjv.me" target="_blank">pjv@pjv.me</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div style="word-wrap:break-word"><div>I might be able to help with this. Here is an email that I sent to Guus some time ago:</div><div><br></div><div><blockquote type="cite"><blockquote type="cite"><span style="font-family:FiraMono-Regular;font-size:13px">Having moved onward from setting up a private tinc router-mode mesh on my routers and linux servers, I finally got around to installing and setting tinc up on my mac laptop. When I wanted to set up the mac so it could see my tinc network (but NOT route everything through it, road-warrior style), I couldn’t find the right config anywhere and when I tried to just copy the configs I used on my linux server boxes (setting them up with something like <ifconfig $INTERFACE 10.112.1.1 netmask 255.255.0.0>) so it would be a single leaf node and be able to see and be seen by the rest of the mesh, I was thwarted by the FreeBSD ifconfig command which forces you to create a ptp link when configuring a tun device by specifying both the IP address of the device AND a specific device on the other end of the ptp link (you cannot specify a network).</span><br style="font-family:FiraMono-Regular;font-size:13px"><br style="font-family:FiraMono-Regular;font-size:13px"><span style="font-family:FiraMono-Regular;font-size:13px">This is a tinc-up script that mimics the linux behavior. you may want to add this to the wiki page here: </span><a href="http://www.tinc-vpn.org/examples/osx-install/" style="font-family:FiraMono-Regular;font-size:13px" target="_blank">http://www.tinc-vpn.org/examples/osx-install/</a><br style="font-family:FiraMono-Regular;font-size:13px"><br style="font-family:FiraMono-Regular;font-size:13px"><br style="font-family:FiraMono-Regular;font-size:13px"><span style="font-family:FiraMono-Regular;font-size:13px">tinc-up (for OS X yosemite):</span><br style="font-family:FiraMono-Regular;font-size:13px"><br style="font-family:FiraMono-Regular;font-size:13px"><span style="font-family:FiraMono-Regular;font-size:13px">#!/bin/sh</span><br style="font-family:FiraMono-Regular;font-size:13px"><br style="font-family:FiraMono-Regular;font-size:13px"><span style="font-family:FiraMono-Regular;font-size:13px">ifconfig $INTERFACE <a href="http://10.112.1.2/16" target="_blank">10.112.1.2/16</a> 10.112.1.2</span><br style="font-family:FiraMono-Regular;font-size:13px"><span style="font-family:FiraMono-Regular;font-size:13px">route add -net 10.112.0.0 10.112.1.2 255.255.0.0</span></blockquote></blockquote></div><div><br></div><div>hope that helps.</div><br><div><blockquote type="cite"><div>On Jan 7, 2016, at 3:25 PM, Ned Twigg <<a href="mailto:ned.twigg@diffplug.com" target="_blank">ned.twigg@diffplug.com</a>> wrote:</div><br><div><div dir="ltr">> <span style="font-size:12.8px">kextload /Library/Extensions/tun.kext/</span><div><br></div><div>I didn't have a <span style="font-size:12.8px">/Library/Extensions/tun.kext/ on my machine. I googled around, and downloaded and installed from <a href="http://tuntaposx.sourceforge.net/" target="_blank">http://tuntaposx.sourceforge.net/</a>. Not sure why the macports install didn't work, but it seems I'm making progress.</span></div><div><span style="font-size:12.8px"><br></span></div><div><span style="font-size:12.8px">Now I get this:</span></div>> sudo tincd -n dpsf -D -d3<br>tincd 1.0.21 (Feb 3 2015 20:09:36) starting, debug level 3<br>/dev/tun0 is a Generic BSD tun device<br>Executing script tinc-up<br>ifconfig: interface dpsfVPN does not exist<br>Script tinc-up exited with non-zero status 1<br>Listening on 0.0.0.0 port 655<br>Ready<br>Trying to connect to dpserver001 (71.202.38.86 port 655)<br>Connected to dpserver001 (71.202.38.86 port 655)<br>Sending ID to dpserver001 (71.202.38.86 port 655)<div>... (lots of stuff, but I can't ping through the VPN)</div><div><br></div><div>So then I tried changing the interface in my conf.vpn to tun0, but then I get<br><br>> sudo tincd -n dpsf -D -d<br>tincd 1.0.21 (Feb 3 2015 20:09:36) starting, debug level 1<br>/dev/tun0 is a Generic BSD tun device<br>ifconfig: ioctl (SIOCAIFADDR): Destination address required<br>Script tinc-up exited with non-zero status 1<br></div><div>... (lots of stuff, but ping doesn't work).</div><div><br></div><div>I tried Spencer's suggestion re: the FAQ <a href="http://tinc-vpn.org/faq/#index5h3" target="_blank">http://tinc-vpn.org/faq/#index5h3</a></div><br>> ifconfig tap0 10.0.0.13<br>ifconfig: interface tap0 does not exist<br>> ifconfig dpsfVPN 10.0.0.13<br>ifconfig: interface dpsfVPN does not exist<br>> ifconfig tun0 10.0.0.13<br>ifconfig: ioctl (SIOCAIFADDR): Destination address required<div><br></div><div>Thanks for the help, I think I'm closer! Any ideas for next steps?</div></div><div class="gmail_extra"><br clear="all"><div><div><div dir="ltr"><div style="font-family:arial;font-size:small"><font color="#38761d">Ned Twigg<br></font></div><div style="font-family:arial;font-size:small"><font color="#38761d">Lead Software Architect, DiffPlug LLC</font></div><div style="font-family:arial;font-size:small"><font color="#38761d"><a href="tel:949-264-3433" value="+19492643433" target="_blank">949-264-3433</a><br></font></div><div style="font-family:arial;font-size:small"><font color="#38761d">340 S Lemon Ave #3433, Walnut, CA 91789</font></div></div></div></div>
<br><div class="gmail_quote">On Thu, Jan 7, 2016 at 11:16 AM, Guus Sliepen <span dir="ltr"><<a href="mailto:guus@tinc-vpn.org" target="_blank">guus@tinc-vpn.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">On Thu, Jan 07, 2016 at 09:55:14AM -0800, Ned Twigg wrote:<br>
<br>
> > sudo tincd -n dpsf -D -d3<br>
> tincd 1.0.21 (Feb 3 2015 20:09:36) starting, debug level 3<br>
> Could not open /dev/tun0: No such file or directory<br>
> Terminating<br>
<br>
That sounds like the tun module is not loaded. If you didn't reboot<br>
since installing the tuntaposx modules, try running the following<br>
command:<br>
<br>
kextload /Library/Extensions/tun.kext/<br>
<br>
Then try to start tinc again.<br>
<br>
> And here's the contents of my files in /opt/local/etc/tinc:<br>
><br>
> > dpsf/tinc.conf<br>
> Name = ntwigg2009mac<br>
> AddressFamily = ipv4<br>
> Interface = dpsfVPN<br>
> ConnectTo = dpserver001<br>
><br>
> > dpsf/tinc-up<br>
> #!/bin/sh<br>
> ifconfig $INTERFACE 10.0.0.13 netmask 255.255.255.0<br>
><br>
> > dpsf/tinc-down<br>
> #!/bin/sh<br>
> ifconfig $INTERFACE down<br>
<br>
All that looks OK.<br>
<br>
> > sudo launchctl load -w<br>
> /Library/LaunchDaemons/org.macports.tuntaposx.plist<br>
> /opt/local/etc/LaunchDaemons/org.macports.tuntaposx/org.macports.tuntaposx.plist:<br>
> Operation already in progress<br>
<br>
Hm, that's weird. I don't know what that error message means here.<br>
</blockquote></div></div></div></blockquote></div><br><div><br></div><div><br></div></div><br>_______________________________________________<br>
tinc mailing list<br>
<a href="mailto:tinc@tinc-vpn.org">tinc@tinc-vpn.org</a><br>
<a href="http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc" rel="noreferrer" target="_blank">http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc</a><br>
<br></blockquote></div><br></div>