Bug #3018
Template fragment for /etc/openvpn/host-to-net.conf add push for network added in networks db
Status: | CLOSED | Start date: | ||
---|---|---|---|---|
Priority: | Normal | Due date: | ||
Assignee: | - | % Done: | 100% | |
Category: | nethserver-openvpn | |||
Target version: | v6.6 | |||
Security class: | Resolution: | |||
Affected version: | v6.5 | NEEDINFO: | No |
Description
The template fragment
/etc/e-smith/templates-custom/etc/openvpn/host-to-net.conf/40route
add in openvpn file a push command for every networks added in networks db.
[root@nethserver]# db networks show 10.10.28.0=network Description= Mask=255.255.255.0 10.10.33.0=network Description= Mask=255.255.255.0 10.10.38.0=network Description= Mask=255.255.255.0 10.10.43.0=network Description= Mask=255.255.255.0 10.10.51.0=network Description= Mask=255.255.255.0 10.10.52.0=network Description= Mask=255.255.255.0 10.10.53.0=network Description= Mask=255.255.255.0 10.10.70.0=network Description= Mask=255.255.255.0 192.168.28.0=network Description= Mask=255.255.255.0 192.168.33.0=network Description= Mask=255.255.255.0 192.168.38.0=network Description= Mask=255.255.255.0 192.168.43.0=network Description= Mask=255.255.255.0 192.168.51.0=network Description= Mask=255.255.255.0 192.168.52.0=network Description= Mask=255.255.255.0 192.168.53.0=network Description= Mask=255.255.255.0 192.168.70.0=network Description= Mask=255.255.255.0
Here the config file
push "route 10.10.28.0 255.255.255.0" push "route 10.10.33.0 255.255.255.0" push "route 10.10.38.0 255.255.255.0" push "route 10.10.43.0 255.255.255.0" push "route 10.10.51.0 255.255.255.0" push "route 10.10.52.0 255.255.255.0" push "route 10.10.53.0 255.255.255.0" push "route 10.10.70.0 255.255.255.0" push "route 192.168.28.0 255.255.255.0" push "route 192.168.33.0 255.255.255.0" push "route 192.168.38.0 255.255.255.0" push "route 192.168.43.0 255.255.255.0" push "route 192.168.51.0 255.255.255.0" push "route 192.168.52.0 255.255.255.0" push "route 192.168.53.0 255.255.255.0" push "route 192.168.70.0 255.255.255.0"
This is a problem for the client of host to net openvpn
10.10.17.5 0.0.0.0 255.255.255.255 UH 0 0 0 tun0 10.10.38.0 10.10.17.5 255.255.255.0 UG 0 0 0 tun0 192.168.52.0 10.10.17.5 255.255.255.0 UG 0 0 0 tun0 10.10.70.0 10.10.17.5 255.255.255.0 UG 0 0 0 tun0 10.10.53.0 10.10.17.5 255.255.255.0 UG 0 0 0 tun0 192.168.70.0 10.10.17.5 255.255.255.0 UG 0 0 0 tun0 192.168.53.0 10.10.17.5 255.255.255.0 UG 0 0 0 tun0 10.10.52.0 10.10.17.5 255.255.255.0 UG 0 0 0 tun0 10.10.51.0 10.10.17.5 255.255.255.0 UG 0 0 0 tun0 192.168.51.0 10.10.17.5 255.255.255.0 UG 0 0 0 tun0 192.168.17.0 10.10.17.5 255.255.255.0 UG 0 0 0 tun0 10.10.33.0 10.10.17.5 255.255.255.0 UG 0 0 0 tun0 10.10.17.0 10.10.17.5 255.255.255.0 UG 0 0 0 tun0 192.168.33.0 10.10.17.5 255.255.255.0 UG 0 0 0 tun0 10.10.28.0 10.10.17.5 255.255.255.0 UG 0 0 0 tun0 192.168.28.0 10.10.17.5 255.255.255.0 UG 0 0 0 tun0 10.10.43.0 10.10.17.5 255.255.255.0 UG 0 0 0 tun0 192.168.43.0 10.10.17.5 255.255.255.0 UG 0 0 0 tun0
because it has many wrong routes for this networks, this routes create navigation problems, for example.
Add networks from routes db instead of nethworks db may be more correctly.
Related issues
Associated revisions
host-to-net: push static routes to client. Refs #3018
History
#1 Updated by Andrea Marchionni over 6 years ago
- Description updated (diff)
#2 Updated by Giacomo Sanchietti over 6 years ago
- Status changed from NEW to TRIAGED
- Target version set to v6.6
- % Done changed from 0 to 20
I agree on this.
#3 Updated by Giacomo Sanchietti over 6 years ago
- Status changed from TRIAGED to ON_DEV
- Assignee set to Giacomo Sanchietti
- % Done changed from 20 to 30
#4 Updated by Giacomo Sanchietti over 6 years ago
- Status changed from ON_DEV to MODIFIED
- Assignee deleted (
Giacomo Sanchietti) - % Done changed from 30 to 60
#5 Updated by Giacomo Sanchietti over 6 years ago
- Related to Feature #3037: Adding a route should re-create vpn config files added
#6 Updated by Giacomo Sanchietti over 6 years ago
- Status changed from MODIFIED to ON_QA
- % Done changed from 60 to 70
Package in nethserver-testing:
- nethserver-openvpn-1.1.2-1.9.gac620ff.ns6.noarch.rpm
See test case from #3037
#7 Updated by Davide Marini over 6 years ago
- Status changed from ON_QA to VERIFIED
- % Done changed from 70 to 90
#8 Updated by Giacomo Sanchietti over 6 years ago
- Status changed from VERIFIED to CLOSED
- % Done changed from 90 to 100
Released in nethserver-base:
- nethserver-openvpn-1.2.0-1.ns6.noarch.rpm