ok, changed that and now i am able to connect to port 80 on my Mac, from Linux box using 192.168.1.9 address. However, i can't connect to another webserver on my home network at 192.168.1.1.
On my linux: ubuntu@tinc:/etc/tinc/zt$ telnet 192.168.1.9 80 Trying 192.168.1.9... Connected to 192.168.1.9. Escape character is '^]'. ubuntu@tinc:/etc/tinc/zt$ telnet 192.168.1.1 80 Trying 192.168.1.1... telnet: Unable to connect to remote host: No route to host VPN IP on Linux is 192.168.2.1 default x.x.x.x 0.0.0.0 UG 100 0 0 eth0 localnet * 255.255.255.0 U 0 0 0 eth0 192.168.0.0 * 255.255.0.0 U 0 0 0 zt 192.168.1.0 192.168.2.1 255.255.255.0 UG 0 0 0 zt 192.168.1.9 * 255.255.255.255 UH 0 0 0 zt and my tinc-up on the linux is #!/bin/sh ifconfig $INTERFACE 192.168.2.1 netmask 255.255.0.0 route add -host 192.168.1.9 dev $INTERFACE route add -net 192.168.1.0 netmask 255.255.255.0 gw 192.168.2.1 On Sun, Sep 22, 2013 at 5:04 AM, Guus Sliepen <[email protected]> wrote: > On Sat, Sep 21, 2013 at 03:30:17PM -0700, Zia Syed wrote: > > > I needed to install tuntap and then i got some progress. I think we got > the > > VPN setup, but i am not able to use it. I think something is wrong with > the > > routing table. Here is my setup http://cl.ly/image/0Z0q3y283O2T > > > > The linux box has only one interface that has public IP, and my Mac has > > NATed IP of 192.168.1.9 > > > > when i bring up the VPN, the linux box shows my network interface with > same > > external IP address as the one on eth0 (4.3.2.2) > > The problem is probably this: when tinc starts on the Mac, it adds an > entry to > the routing table saying that traffic to 4.3.2.2 should go to the VPN > interface. Then it tries to make a connection to the Linux box, which has > public IP address 4.3.2.2. But because of the entry in the routing table, > the > kernel sends that connection to the VPN interface instead of to the > Internet. > I suggest you use a private IP address (say, 192.168.2.1) for the VPN > interface > on the Linux box. > > -- > Met vriendelijke groet / with kind regards, > Guus Sliepen <[email protected]> > > _______________________________________________ > tinc mailing list > [email protected] > http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc > >
_______________________________________________ tinc mailing list [email protected] http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc
