How to tinc windows client to linux server

01-03-2006, 10:07 AM

Hello!

First of all, I am not sure if this is realy a Linux topic, but in fact
it is a networking topic and I reaaly need help.

I am running a Debiag Sarge server (2.4.27 Kernel) and want to connect
a Windows client over the internet via VPN. I thought that a tinc VPN
is the best way with my linux kernel (cause there are no patches
required). I set up all like this:

1. Serverside:

/etc/tinc/vpn/tinc.conf:
Name = ciserver
Device = /dev/net/tun

/etc/tinc/vpn/hosts/server:
Compression=9
Address vpn.mydomain.de
Subnet = 10.1.1.1
----BEGIN RSA PUBLIC KEY-----
somersakeydata
----END RSA PUBLIC KEY-----

/etc/tinc/vpn/hosts/home:
Compression=9
Adress=officeroutersIP
Subnet = 10.1.1.2
----BEGIN RSA PUBLIC KEY-----
someotherrsakeydata
----END RSA PUBLIC KEY-----

Datei /etc/tinc/vpn/tinc-up:
#!/bin/bash
ifconfig vpn 10.1.1.1 netmask 255.255.255.0 broadcast 10.1.1.255
-arp

And of course there are the tinc Keyfiles generated too.

2. Client Sinde (Win2K):
Installed Tinc, openssl, tap32, lbz, zlib

Then made the folders like serverside and copied the host files to
client via scp
In windows there are no tinc-up file cause this is defined in the
networking interface.
so I set
ip=10.1.1.2
mask=255.255.2550
gateway=myhomeroutersIP
DNS1 myhomeroutersIP
DNS2 none

And here ist the Problem:
When I ping with my windoze trough the VPN a serversided tail
/var/log/syslog sais:

Jan 3 11:24:30 localhost tinc.consult-it[27717]: Node home
(80.108.85.21 port 655) became reachable
Jan 3 11:24:35 localhost tinc.consult-it[27717]: Got REQ_KEY from home
(80.108.85.21 port 6343): 15 home ciserver
Jan 3 11:24:35 localhost tinc.consult-it[27717]: Sending ANS_KEY to
home (80.108.85.21 port 6343): 16 ciserver home
09005989A8CBF63ABE510FC6A3F1EB515EAF1700629C8E8E 91 64 4 9
Jan 3 11:24:35 localhost tinc.consult-it[27717]: Sending 76 bytes of
metadata to home (80.108.85.21 port 6343)
Jan 3 11:24:35 localhost tinc.consult-it[27717]: Received UDP packet
from unknown source 80.108.85.21 port 6655
Jan 3 11:25:40 localhost tinc.consult-it[27717]: Received UDP packet
from unknown source 80.108.85.21 port 6655
Jan 3 11:25:45 localhost tinc.consult-it[27717]: Received UDP packet
from unknown source 80.108.85.21 port 6655
Jan 3 11:26:01 localhost tinc.consult-it[27717]: Sending PING to home
(80.108.85.21 port 6343): 8
Jan 3 11:26:01 localhost tinc.consult-it[27717]: Sending 2 bytes of
metadata to home (80.108.85.21 port 6343)
Jan 3 11:26:01 localhost tinc.consult-it[27717]: Got PONG from home
(80.108.85.21 port 6343): 9
Jan 3 11:27:34 localhost tinc.consult-it[27717]: Got PING from home
(80.108.85.21 port 6343): 8
Jan 3 11:27:34 localhost tinc.consult-it[27717]: Sending PONG to home
(80.108.85.21 port 6343): 9
Jan 3 11:27:34 localhost tinc.consult-it[27717]: Sending 2 bytes of
metadata to home (80.108.85.21 port 6343)
Jan 3 11:28:03 localhost tinc.consult-it[27717]: Regenerating
symmetric key
Jan 3 11:28:03 localhost tinc.consult-it[27717]: Sending KEY_CHANGED
to everyone (BROADCAST): 14 364d5d0 ciserver
Jan 3 11:28:03 localhost tinc.consult-it[27717]: Sending 20 bytes of
metadata to home (80.108.85.21 port 6343)
Jan 3 11:29:04 localhost tinc.consult-it[27717]: Sending PING to home
(80.108.85.21 port 6343): 8
Jan 3 11:29:04 localhost tinc.consult-it[27717]: Sending 2 bytes of
metadata to home (80.108.85.21 port 6343)
Jan 3 11:29:04 localhost tinc.consult-it[27717]: Got PONG from home
(80.108.85.21 port 6343): 9
Jan 3 11:30:37 localhost tinc.consult-it[27717]: Got PING from home
(80.108.85.21 port 6343): 8
Jan 3 11:30:37 localhost tinc.consult-it[27717]: Sending PONG to home
(80.108.85.21 port 6343): 9
Jan 3 11:30:37 localhost tinc.consult-it[27717]: Sending 2 bytes of
metadata to home (80.108.85.21 port 6343)
Jan 3 11:32:07 localhost tinc.consult-it[27717]: Sending PING to home
(80.108.85.21 port 6343): 8
Jan 3 11:32:07 localhost tinc.consult-it[27717]: Sending 2 bytes of
metadata to home (80.108.85.21 port 6343)
Jan 3 11:32:07 localhost tinc.consult-it[27717]: Got PONG from home
(80.108.85.21 port 6343): 9

OK, in fact: I am 80.108.85.21
But the Ping Packages never arrive my windoze client. The equivalent
happens if I ping from server to client.

Where got the packages lost??

Note: there are no firewallrules active while thesting the connection
(either client nor server sided)!

Thank you!!

Christain Maier

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Connection problem from Windows Client to Linux Server	mfg	Linux Networking	3	10-10-2007 12:20 PM
VNC server on windows, linux client cannot connect	Geico Caveman	Linux Networking	0	09-14-2006 07:38 AM
Windows ntp server, Linux Client	Brad Schroeder	Linux Networking	3	08-11-2004 03:21 PM
Linux DNS Client Against Windows 2000 DNS Server	Daniel Rigal	Linux Networking	5	06-16-2004 02:24 PM
best networking configuration for router/linux server/windows client ?	LoneShadow	Linux Networking	4	10-24-2003 05:55 PM