Bug #3074

« Previous | Next »

Network access via green lost if OpenVPN has a bad configuration

Added by Davide Marini over 6 years ago. Updated about 6 years ago.

Status:CLOSEDStart date:
Priority:NormalDue date:
Assignee:-% Done:

100%

Category:nethserver-openvpn
Target version:v6.6
Security class: Resolution:
Affected version:v6.6 NEEDINFO:No

Description

  • OpenVPN RoadWarrior
  • Routed mode
  • network/netmask are the same of the green role

The system try to set the vpn, the update bar stops at 72%, now the system has a tunX interface with the same ip of the ethx with green role and the connection towards the green is lost.

Associated revisions

Revision 267fc3b6
Added by Giacomo Sanchietti about 6 years ago

Web UI: check routed network is not already in use. Refs #3074

Revision d846ea3c
Added by Giacomo Sanchietti about 6 years ago

Translation: add used_network label. Refs #3074

History

#1 Updated by Giacomo Sanchietti over 6 years ago

  • Priority changed from High to Normal
  • Target version set to ~FUTURE

#2 Updated by Giacomo Sanchietti about 6 years ago

  • Category set to nethserver-openvpn
  • Status changed from NEW to TRIAGED
  • Assignee set to Giacomo Sanchietti
  • Target version changed from ~FUTURE to v6.6
  • % Done changed from 0 to 20
  • Affected version set to v6.6

#3 Updated by Giacomo Sanchietti about 6 years ago

  • Status changed from TRIAGED to ON_DEV
  • % Done changed from 20 to 30

#4 Updated by Giacomo Sanchietti about 6 years ago

  • Status changed from ON_DEV to MODIFIED
  • % Done changed from 30 to 60

#5 Updated by Giacomo Sanchietti about 6 years ago

  • Status changed from MODIFIED to ON_QA
  • Assignee deleted (Giacomo Sanchietti)
  • % Done changed from 60 to 70
Package in nethserver-testing:
  • nethserver-openvpn-1.2.0-1.7.g267fc3b.ns6.noarch.rpm
Test case 1
  • Check the bug is not reproducible:
    • Configure the OpenVPN in routed mode
    • Set a network equal to the green (or blue) network
    • The interface must raise an error
Test case 2
  • Check the validation doesn't fail if bridged mode is selected

#6 Updated by Filippo Carletti about 6 years ago

  • Status changed from ON_QA to VERIFIED
  • % Done changed from 70 to 90

When I configured openvpn with the green lan on an unpacthed system I was forced to use the system console to access a shell. There I stopped openvpn and I regained network access).
The symptoms were as described here.
After update I can't set the openvpn network to any already used network. When I try, an error is displayed in red at top (the system is using the Italian language):

Rete
used_network

If I try to set the blue network for the vpn the error message is repeated twice.

In bridged mode an ip range in the lan network is accepted.

#7 Updated by Giacomo Sanchietti about 6 years ago

  • Status changed from VERIFIED to CLOSED
  • % Done changed from 90 to 100
Released in nethserver-updates:
  • nethserver-openvpn-1.2.1-1.ns6.noarch.rpm

Also available in: Atom PDF