Date: Fri, 31 Jul 2009 00:57:59 +0200 From: "Matthias Andree" <matthias.andree@gmx.de> To: "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net>, "Julian Elischer" <julian@elischer.org> Cc: Qing Li <qingli@freebsd.org>, "Li, Qing" <qing.li@bluecoat.com>, FreeBSD Current <freebsd-current@freebsd.org>, "Openvpn-devel@lists.sourceforge.net" <Openvpn-devel@lists.sourceforge.net>, Stefan Bethke <stb@lassitu.de> Subject: Re: recent change to ifconfig breaks OpenVPN? Message-ID: <op.uxwkqxxd1e62zd@merlin.emma.line.org> In-Reply-To: <20090730220658.M245@maildrop.int.zabbadoz.net> References: <B4AA014B-2444-40AA-A3A3-417E4B89DF90@lassitu.de> <4A709126.5050102@elischer.org> <3A1518B9-2C8C-4F05-9195-82C6017E4902@lassitu.de> <op.uxusbswp1e62zd@merlin.emma.line.org> <BEE762CA-4282-4BA8-B92B-AFC7AAE3CA9A@lassitu.de> <ABCF4747-24D4-4435-952B-EA85A2AE999F@lassitu.de> <B583FBF374231F4A89607B4D08578A4304E22D95@bcs-mail03.internal.cacheflow.com> <4A721160.5080902@elischer.org> <20090730220658.M245@maildrop.int.zabbadoz.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Am 31.07.2009, 00:36 Uhr, schrieb Bjoern A. Zeeb <bzeeb-lists@lists.zabbadoz.net>: > Yeah that is as great as we are or rather were. > > So really, fix the openvpn scripts that assign the address to > interfaces to do something that would make sense from the ``man ip'' > (not the literal command) point of view. Just that it's "working" > somewhere or used to work elswhere neither means that it was correct > nor made sense at any time before. It's actually in the C code where it was advertised as FreeBSD fix. OpenVPN runs in 'topology subnet' mode here, which is documented as follows: Use a subnet rather than a point-to-point topology by configuring the tun interface with a local IP address and subnet mask, similar to the topology used in --dev tap and ethernet bridging mode. This mode allocates a single IP address per con- necting client [... MS-Windows stuff here ...] When used on *nix, requires that the tun driver supports an ifconfig(8) command which sets a subnet instead of a remote endpoint IP address. I wonder if TUNSIFMODE (see tun(4)) is somehow needed and if so, already done, and how the proper ifconfig call would look like in this case. Stefan already uttered some ideas in that direction. I haven't had much time to investigate yet. -- Matthias Andree
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?op.uxwkqxxd1e62zd>