From owner-freebsd-current@FreeBSD.ORG Thu Jul 30 22:58:08 2009 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A19F5106564A for ; Thu, 30 Jul 2009 22:58:07 +0000 (UTC) (envelope-from matthias.andree@gmx.de) Received: from mail.gmx.net (mail.gmx.net [213.165.64.20]) by mx1.freebsd.org (Postfix) with SMTP id DAA438FC1B for ; Thu, 30 Jul 2009 22:58:06 +0000 (UTC) (envelope-from matthias.andree@gmx.de) Received: (qmail invoked by alias); 30 Jul 2009 22:58:02 -0000 Received: from g225199035.adsl.alicedsl.de (EHLO mandree.no-ip.org) [92.225.199.35] by mail.gmx.net (mp064) with SMTP; 31 Jul 2009 00:58:02 +0200 X-Authenticated: #428038 X-Provags-ID: V01U2FsdGVkX1/QsRkGIT/Qaa4rZx4w3jYSGTz6amW6ZXyR1DRFtK 06x7qPvU7hWced Received: from merlin.emma.line.org (localhost [127.0.0.1]) by merlin.emma.line.org (Postfix) with ESMTP id 4137494641; Fri, 31 Jul 2009 00:58:00 +0200 (CEST) Date: Fri, 31 Jul 2009 00:57:59 +0200 To: "Bjoern A. Zeeb" , "Julian Elischer" From: "Matthias Andree" Content-Type: text/plain; format=flowed; delsp=yes; charset=utf-8 MIME-Version: 1.0 References: <4A709126.5050102@elischer.org> <3A1518B9-2C8C-4F05-9195-82C6017E4902@lassitu.de> <4A721160.5080902@elischer.org> <20090730220658.M245@maildrop.int.zabbadoz.net> Content-Transfer-Encoding: 7bit Organization: Message-ID: In-Reply-To: <20090730220658.M245@maildrop.int.zabbadoz.net> User-Agent: Opera Mail/9.64 (Linux) X-Y-GMX-Trusted: 0 X-FuHaFi: 0.55 Cc: Qing Li , "Li, Qing" , FreeBSD Current , "Openvpn-devel@lists.sourceforge.net" , Stefan Bethke Subject: Re: recent change to ifconfig breaks OpenVPN? X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 30 Jul 2009 22:58:14 -0000 Am 31.07.2009, 00:36 Uhr, schrieb Bjoern A. Zeeb : > Yeah that is as great as we are or rather were. > > So really, fix the openvpn scripts that assign the address to > interfaces to do something that would make sense from the ``man ip'' > (not the literal command) point of view. Just that it's "working" > somewhere or used to work elswhere neither means that it was correct > nor made sense at any time before. It's actually in the C code where it was advertised as FreeBSD fix. OpenVPN runs in 'topology subnet' mode here, which is documented as follows: Use a subnet rather than a point-to-point topology by configuring the tun interface with a local IP address and subnet mask, similar to the topology used in --dev tap and ethernet bridging mode. This mode allocates a single IP address per con- necting client [... MS-Windows stuff here ...] When used on *nix, requires that the tun driver supports an ifconfig(8) command which sets a subnet instead of a remote endpoint IP address. I wonder if TUNSIFMODE (see tun(4)) is somehow needed and if so, already done, and how the proper ifconfig call would look like in this case. Stefan already uttered some ideas in that direction. I haven't had much time to investigate yet. -- Matthias Andree