Bug#691845: openvpn: tries to set routes before setting IP address, so route command fails

Tue, 30 Oct 2012 03:15:21 -0700 

Package: openvpn
Version: 2.2.1-8
Severity: normal

Dear Maintainer,

When specifying per client push options on the server, i.e:
ifconfig-push 172.16.1.1 255.255.0.0
push "route add -net 192.168.2.0 netmask 255.255.255.0 gw 172.16.0.2"

it is expected that the client configures its network device with provided
IP and after that, executes route command.

However, openvpn client tries to execute route first and later ifconfig,
so route command fails because there's no interface matching the required
gateway.

Relevant lines from syslog:

Oct 30 10:58:01 collins ovpn-client[23147]: SENT CONTROL [server]:
'PUSH_REQUEST' (status=1)
Oct 30 10:58:01 collins ovpn-client[23147]: PUSH: Received control message:
'PUSH_REPLY,route-gateway 172.16.0.1,ping 10,ping-restart 120,route add -net
192.168.2.0 netmask 255.255.255.0 gw 172.16.0.2,ifconfig 172.16.1.1
255.255.0.0'
Oct 30 10:58:01 collins ovpn-client[23147]: Options error: route parameter
network/IP 'add' must be a valid address
Oct 30 10:58:01 collins ovpn-client[23147]: OPTIONS IMPORT: timers and/or
timeouts modified
Oct 30 10:58:01 collins ovpn-client[23147]: OPTIONS IMPORT: --ifconfig/up
options modified
Oct 30 10:58:01 collins ovpn-client[23147]: OPTIONS IMPORT: route options
modified
Oct 30 10:58:01 collins ovpn-client[23147]: OPTIONS IMPORT: route-related
options modified
Oct 30 10:58:01 collins ovpn-client[23147]: ROUTE default_gateway=138.4.36.1
Oct 30 10:58:01 collins ovpn-client[23147]: TUN/TAP device tap0 opened
Oct 30 10:58:01 collins ovpn-client[23147]: TUN/TAP TX queue length set to
100
Oct 30 10:58:01 collins ovpn-client[23147]: do_ifconfig, tt->ipv6=0,
tt->did_ifconfig_ipv6_setup=0
Oct 30 10:58:01 collins ovpn-client[23147]: /sbin/ifconfig tap0 172.16.1.1
netmask 255.255.0.0 mtu 1500 broadcast 172.16.255.255


Thus, route -n doesn't show 192.168.2.0 network, but I can manually execute
the command route add -net 192.168.2.0 netmask 255.255.255.0 gw 172.16.0.2
which succesfully sets the required route.

Kind regards

-- System Information:
Debian Release: wheezy/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 
'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.5-trunk-amd64 (SMP w/8 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/bash

Versions of packages openvpn depends on:
ii  debconf [debconf-2.0]  1.5.46
ii  initscripts            2.88dsf-32
ii  libc6                  2.13-35
ii  liblzo2-2              2.06-1
ii  libpam0g               1.1.3-7.1
ii  libpkcs11-helper1      1.09-1
ii  libssl1.0.0            1.0.1c-4
ii  net-tools              1.60-24.2

openvpn recommends no packages.

Versions of packages openvpn suggests:
ii  openssl     1.0.1c-4
pn  resolvconf  <none>

-- debconf information excluded


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Reply via email to