|
Windows 2008 r2 - 6in4-heartbeat - tunnel does not work
![[de]](/s/countries/de.gif) Shadow Hawkins on Monday, 21 June 2010 20:24:47
Hello,
I tried to follow the wiki and searched the forum to setup my tunnel, but it still does not work.
I have a windows server 2008 r2 with 64bit and try to set up a 6in4-heartbeat tunnel (the server is behind a nat-router, but is configured as DMZ-Host).
I installed the tap via the current OpenVPN installer and renamed the connection to "aiccu". Then I put the aiccu-console app in a folder and placed a aiccu.config file in the windows directory.
If I start aiccu I get the following output.
After that the aiccu network adapter is still disabled and no relevant ip6-address is known in my system.
The Line "heartbeat_socket() - IPv4 : 192.168.1.20" lists my internal IP and not my external one - has this any effect?
How would the output look like, when everything is succesfull?
If I try "test" or "autotest" I get the error message "[error] Tunnel Setup Failed".
Thanks for your help!
Stefan
C:\Program Files (x86)\aiccu>aiccu-2008-03-15-windows-console.exe version
AICCU 2008.03.15-console-win32 by Jeroen Massar
C:\Program Files (x86)\aiccu>aiccu-2008-03-15-windows-console.exe start
sock_getline() : "200 SixXS TIC Service on noc.sixxs.net ready (http://www.sixxs.net)"
sock_printf() : "client TIC/draft-00 AICCU/2008.03.15-console-win32 WinNT/6.1.7600"
sock_getline() : "200 Client Identity accepted"
sock_printf() : "get unixtime"
sock_getline() : "200 1277143565"
sock_printf() : "username SWF3-SIXXS"
sock_getline() : "200 SWF3-SIXXS choose your authentication challenge please"
sock_printf() : "challenge md5"
sock_getline() : "200 08fe7827b400d3a5cacfa6f585babfbf"
sock_printf() : "authenticate md5 9218fb1b172c01d88681c4dbe97330a8"
sock_getline() : "200 Succesfully logged in using md5 as SWF3-SIXXS (Stefan Wagner)"
sock_printf() : "tunnel show T34033"
sock_getline() : "201 Showing tunnel information for T34033"
sock_getline() : "TunnelId: T34033"
sock_getline() : "Type: 6in4-heartbeat"
sock_getline() : "IPv6 Endpoint: 2001:4dd0:ff00:1d1::2"
sock_getline() : "IPv6 POP: 2001:4dd0:ff00:1d1::1"
sock_getline() : "IPv6 PrefixLength: 64"
sock_getline() : "Tunnel MTU: 1280"
sock_getline() : "Tunnel Name: My First Tunnel"
sock_getline() : "POP Id: decgn01"
sock_getline() : "IPv4 Endpoint: heartbeat"
sock_getline() : "IPv4 POP: 78.35.24.124"
sock_getline() : "UserState: enabled"
sock_getline() : "AdminState: enabled"
sock_getline() : "Password: xxx"
sock_getline() : "Heartbeat_Interval: 60"
sock_getline() : "202 Done"
Succesfully retrieved tunnel information for T34033
sock_printf() : "QUIT Solitary"
Tunnel Information for T34033:
PoP Id : decgn01
IPv6 Local : 2001:4dd0:ff00:1d1::2/64
IPv6 Remote : 2001:4dd0:ff00:1d1::1/64
Tunnel Type : 6in4-heartbeat
Adminstate : enabled
Userstate : enabled
Name : My First Tunnel
Flag: HAS_IFHEAD not present
Flag: NEED_IFHEAD not present
heartbeat_socket() - IPv4 : 192.168.1.20
[HB] HEARTBEAT TUNNEL 2001:4dd0:ff00:1d1::2 sender 1277143569 1fa9db1cd35e809af13825f7fbf839af
C:\Program Files (x86)\aiccu>
Here is my config file.
# AICCU Configuration (Saved by AICCU 2006.07.23)
# Login information
username SWF3-SIXXS
password xxx
protocol tic
server tic.sixxs.net
# Interface names to use
ipv6_interface aiccu
# The tunnel_id to use
# (only required when there are multiple tunnels in the list)
tunnel_id T34033
# Try to automatically login and setup the tunnel?
automatic true
# Script to run after setting up the interfaces
#setupscript <path>
# No configuration, only beat?
noconfigure false
# TLS Required?
requiretls false
# Be verbose?
verbose true
# Daemonize?
daemonize true
# Behind a NAT?
behindnat true
# Make heartbeats when the protocol needs it?
makebeats true
Windows 2008 r2 - 6in4-heartbeat - tunnel does not work
I installed the tap via the current OpenVPN installer and renamed the connection to "aiccu". Then I put the aiccu-console app in a folder and placed a aiccu.config file in the windows directory.
For heartbeat tunnels you do not need or for that matter want the TAP driver, either rename the interface to something else than aiccu or uninstall that driver.
The Line "heartbeat_socket() - IPv4 : 192.168.1.20" lists my internal IP and not my external one - has this any effect?
As you are behind a NAT, you will need to either configure your NAT box properly (DMZ mode) or use an AYIYA tunnel. I am assuming here that you do not have another IP address on your host.
If I try "test" or "autotest" I get the error message "[error] Tunnel Setup Failed".
Because the TUN/TAP driver is not the tunnel adapter for the 6in4 mode, which is already supplied by Windows itself.
Windows 2008 r2 - 6in4-heartbeat - tunnel does not work
Shadow Hawkins on Monday, 21 June 2010 23:20:53
Thanks for the hint.
Is there a way to configure another IP (e.g. in the config file) fot aiccu?
Thanks!
Stefan
Windows 2008 r2 - 6in4-heartbeat - tunnel does not work
Is there a way to configure another IP (e.g. in the config file) fot aiccu?
What other IP do you want to configure and why and for what purpose?
Windows 2008 r2 - 6in4-heartbeat - tunnel does not work
Shadow Hawkins on Tuesday, 22 June 2010 11:35:33
My public IP4 and not my internal IP4 (192.168...) which is assigned now.
Or is this IP not the endpoint of the tunnel, but only identifies the network adapter?
Ciao!
Stefan
Windows 2008 r2 - 6in4-heartbeat - tunnel does not work
If your public IP is on your computer and it is the IP address used as a default route (or at least the route towards the PoP's IPv4 address) then it will be automatically selected.
Or is this IP not the endpoint of the tunnel, but only identifies the network adapter?
It depends, if you are behind a NAT then the PoP will send packets to the 'public IP' indeed, but then the NAT will forward it to your host (if it is configured properly, eg DMZ mode). This would be the case for proto-41/heartbeat tunnels, for AYIYA it does not matter.
Windows 2008 r2 - 6in4-heartbeat - tunnel does not work
Shadow Hawkins on Monday, 28 June 2010 23:50:43
Now I found this help-site: https://www.sixxs.net/faq/connectivity/?faq=ossetup&os=windows
And now it works!
|
![[ch]](/s/countries/ch.gif)
on Monday, 21 June 2010 20:31:23
Posting is only allowed when you are