I am running tinc in several NAT routers running Debian 7 Wheezy, the VPN works fine for months, except because i've set it up in switch mode it relays DHCP requests and answers over all the VPN. The problem is that host A is using a Pool from 10.10.10.2-254 for DHCP, with 10.10.10.1 as gateway (host A), host B is using a Pool from 10.10.10.2-254 for DHCP with 10.10.20.1 as gateway (host B), and so on.
Please note that the tinc tap (ethernet) interface is bridged across the physical LAN interface, because the purpose of my "cloud" is to make ALL hosts in all networks (A,B ..) appear in the same LAN.
I am looking for a simple solution to overcome this. Tryed using iptables with physdev and physdev-in specifying the tinc interface but this doesen't seem to work.
Is there any other solution to this ?
P.S: switching tinc to router mode is not a solution as i really need multicast and other non-routable protocols.