<html><head>
<meta name="Generator" content="Novell Groupwise Client (Version 14.2.2 Build: 126868)">
<meta http-equiv="Content-Type" content="text/html; charset=utf-8"></head>
<body style="font: 10pt/normal Segoe UI; font-size-adjust: none; font-stretch: normal;"><div class="GroupWiseMessageBody" id="GroupWiseSection_1558324052000_Robert@gainplus.asia_0AE2278002F000008C53A30038005B00_"><div><font size="3"><font face="Segoe UI">Hello Lars,</font></font></div><div><font size="3"><br></font></div><div><font size="3">Thanks for your feedback. Unfortunately I made an error in writing the network I expected to connect to. I meant 10.3.0.0/24 The one I wrote in fact was one network of the already established VPN. I have included full details of my relevant files below.</font></div><div><font size="3"><font face="Segoe UI"><br></font></font></div><div><font size="3"><font face="Segoe UI">Background: I am trying to set up a <strong>second</strong> VPN between two servers: <strong>gtdb</strong> and <strong>db2. </strong>Both servers are already part of separate VPNs: 10.1.0.0/24 and 10.0.0.0/24</font></font></div><div><font size="3"><br></font></div><div><font size="3">These are my files:</font></div><div><font size="3"><br></font></div><div><font size="3"><strong>On server 1: db2</strong></font></div><div><font size="3"><br></font></div><div><font face="Courier New" size="3"><strong>/etc/tinc/nets.boot</strong></font></div><div><font face="Courier New" size="3">#</font></div><div><font face="Courier New" size="3">gainplus <font face="Segoe UI">(this works fine, autostarts, etc)</font><br>vpn1</font></div><div><font face="Courier New" size="3"><br></font></div><div><font face="Courier New" size="3"><strong>/etc/tinc/vpn1/tinc.conf</strong></font></div><div><font face="Courier New" size="3">Name = db2<br>BindToAddress = 10.130.17.192<br>AddressFamily = ipv4<br>Port = 656<br>ConnectTo = gtdb<br>Interface = tun0</font></div><div><font face="Courier New" size="3"><br></font></div><div><font face="Courier New" size="3"><strong>/etc/tinc/vpn1/tinc-up</strong></font></div><div><font face="Courier New" size="3">#!/bin/sh<br># tinc-up<br>ip addr add 10.3.0.50/24 dev $INTERFACE<br>ip link set dev $INTERFACE up</font></div><div><font face="Courier New" size="3"><br></font></div><div><font face="Courier New" size="3"><strong>/etc/tinc/vpn1/hosts/gtdb</strong></font></div><div><font face="Courier New" size="3">Subnet = 10.3.0.51/32<br>Port = 656</font></div><div><font face="Courier New" size="3"><br></font></div><div><font face="Courier New" size="3">-----BEGIN RSA PUBLIC KEY-----</font></div><div><font face="Courier New" size="3"><br></font></div><div><font face="Courier New" size="3"><strong>/etc/tinc/vpn1/hosts/db2</strong></font></div><div><font face="Courier New" size="3">Address = 10.130.17.192<br>Subnet = 10.3.0.50/32<br>Port = 656</font></div><div><font face="Courier New" size="3"><br></font></div><div><font face="Courier New" size="3">-----BEGIN RSA PUBLIC KEY-----<br></font></div><div><font face="Courier New" size="3"><br></font></div><div><font face="Courier New" size="3">#########################################################</font></div><div><font face="Courier New" size="3"><br><font face="Segoe UI">On server 2: <strong>gtdb</strong></font></font></div><div><font size="3"><br></font></div><div><font face="Courier New" size="3"><strong>/etc/tinc/nets.boot</strong></font></div><div><font face="Courier New" size="3">#</font></div><div><font face="Courier New" size="3">gainplus<br>vpn1</font></div><div><font face="Courier New" size="3"><br></font></div><div><font face="Courier New" size="3"><strong>/etc/tinc/vpn1/tinc.conf</strong></font></div><div><font face="Courier New" size="3">Name = gtdb<br>BindToAddress = 10.130.8.6<br>AddressFamily = ipv4<br>Port = 656<br>ConnectTo = db2<br>Interface = tun0</font></div><div><font face="Courier New" size="3"><br></font></div><div><font face="Courier New" size="3"><strong>/etc/tinc/vpn1/tinc-up</strong></font></div><div><font face="Courier New" size="3">#!/bin/sh<br># tinc-up<br>ip addr add 10.3.0.51/24 dev $INTERFACE<br>ip link set dev $INTERFACE up</font></div><div><font face="Courier New" size="3"><br></font></div><div><font face="Courier New" size="3"><strong>/etc/tinc/vpn1/hosts/gtdb</strong></font></div><div><font face="Courier New" size="3">Address = 10.130.8.6<br>Subnet = 10.3.0.0/24<br>Port = 656</font></div><div><font face="Courier New" size="3"><br></font></div><div><font face="Courier New" size="3">-----BEGIN RSA PUBLIC KEY-----</font></div><div><font face="Courier New" size="3"><br></font></div><div><font face="Courier New" size="3"><strong>/etc/tinc/vpn1/hosts/db2</strong></font></div><div><font face="Courier New" size="3">Address = 10.130.17.192<br>Subnet = 10.3.0.50/32<br>Port = 656</font></div><div><font face="Courier New" size="3"><br></font></div><div><font face="Courier New" size="3">-----BEGIN RSA PUBLIC KEY-----</font></div><font size="3"></font></div><div><br></div><div><font size="3">The result I get when running ip a on either server only shows the first VPN tunnel:</font></div><div><font size="3"><br></font></div><div><font face="Courier New" size="3">9: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN group default qlen 500<br> link/none<br> inet 10.0.0.51/24 scope global tun0<br> valid_lft forever preferred_lft forever</font></div><span id="GWSignatureSent" style="padding-right: 0px; padding-left: 0px; margin-bottom: 5px; display: block;"><span style="display: block;"><br><span style="font-size: 10pt; display: inline-block; -ms-word-wrap: normal;">
<div><div><div><font face="Segoe UI" size="3">regards</font></div><div><font face="Segoe UI" size="3">Robert</font></div><br></div></div></span></span></span><span style="margin-bottom: 5px; display: block;"><br></span><div class="GroupWiseMessageBody" id="GroupWiseSection_1558324052000_Robert@gainplus.asia_0AE2278002F000008C53A30038005B00_"><div><div><font color="#505354"><br></font></div></div></div></body></html>