Mailinglist Archive: opensuse-bugs (15074 mails)
| < Previous | Next > |
[Bug 299922] openvpn and xen try to use same tun device
- From: bugzilla_noreply@xxxxxxxxxx
- Date: Mon, 3 Sep 2007 03:04:59 -0600 (MDT)
- Message-id: <20070903090459.599C4CC78D@xxxxxxxxxxxxxxxxxxxxxx>
https://bugzilla.novell.com/show_bug.cgi?id=299922#c2
Marius Tomaschewski <mt@xxxxxxxxxx> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEEDINFO |RESOLVED
Info Provider|Frank@xxxxxxxxxx |
Resolution| |INVALID
--- Comment #2 from Marius Tomaschewski <mt@xxxxxxxxxx> 2007-09-03 03:04:58 MST ---
Works fine for me. Must be a problem with your configuration
(e.g. hard coded tap0 in the config or a script).
Client Server
172.16.0.3/24 -openvpn-> [eth1] 172.16.0.1/24
^ |
| |
[tap0] |
192.168.110.3/24 [tap1] (using "dev tap" in the config)
|
v
xenbr0 <--[eth0] 192.168.110.1/24
^
|
---- vm's
openvpn[17102]: TUN/TAP device tap1 opened
openvpn[17102]: TUN/TAP TX queue length set to 100
openvpn[17102]: /etc/openvpn/up tap1 1500 1574 init
openvpn[17102]: SYSTEM[3] '/etc/openvpn/up tap1 1500 1574 init'
openvpn[17102]: ENV [0] 'script_type=up'
openvpn[17102]: ENV [1] 'dev=tap1'
openvpn[17102]: ENV [2] 'link_mtu=1574'
openvpn[17102]: ENV [3] 'tun_mtu=1500'
openvpn[17102]: ENV [4] 'script_context=init'
openvpn[17102]: ENV [5] 'config=/etc/openvpn/server.conf'
openvpn[17102]: ENV [6] 'proto=udp'
openvpn[17102]: ENV [7] 'local=172.16.0.1'
openvpn[17102]: ENV [8] 'local_port=1194'
openvpn[17102]: ENV [9] 'verb=11'
openvpn[17102]: ENV [10] 'daemon=1'
openvpn[17102]: ENV [11] 'daemon_log_redirect=0'
kernel: device tap1 entered promiscuous mode
kernel: xenbr0: port 5(tap1) entering learning state
kernel: xenbr0: topology change detected, propagating
kernel: xenbr0: port 5(tap1) entering forwarding state
openvpn[17102]: SYSTEM return=0
Server config:
mode server
local 172.16.0.1
port 1194
proto udp
dev tap
up /etc/openvpn/up
down /etc/openvpn/down
ccd-exclusive
client-config-dir /etc/openvpn/clients
tls-server
[...]
Client config in /etc/openvpn/clients/client1 on the server:
ifconfig-push 192.168.110.3 255.255.255.0
push "route-gateway 192.168.110.1"
Script on the server:
/etc/openvpn/up:
#!/bin/sh
bridge="xenbr0"
tapdev="${1}"
tapmtu="${2}"
if test -e "/sys/class/net/${bridge}/brif/${tapdev}" ; then
/sbin/brctl delif ${bridge} ${tapdev} &>/dev/null
/sbin/ifconfig ${tapdev} down &>/dev/null
fi
if test ! -e "/sys/class/net/${bridge}/brif/${tapdev}" ; then
/sbin/brctl addif ${bridge} ${tapdev}
/sbin/ifconfig ${tapdev} up
fi
/etc/openvpn/down:
#!/bin/sh
bridge="xenbr0"
tapdev="${1}"
tapmtu="${2}"
if test -e "/sys/class/net/${bridge}/brif/${tapdev}" ; then
/sbin/brctl delif ${bridge} ${tapdev} &>/dev/null
fi
if test -e "/sys/class/net/${tapdev}" ; then
/sbin/ifconfig ${tapdev} down &>/dev/null
fi
--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
Marius Tomaschewski <mt@xxxxxxxxxx> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEEDINFO |RESOLVED
Info Provider|Frank@xxxxxxxxxx |
Resolution| |INVALID
--- Comment #2 from Marius Tomaschewski <mt@xxxxxxxxxx> 2007-09-03 03:04:58 MST ---
Works fine for me. Must be a problem with your configuration
(e.g. hard coded tap0 in the config or a script).
Client Server
172.16.0.3/24 -openvpn-> [eth1] 172.16.0.1/24
^ |
| |
[tap0] |
192.168.110.3/24 [tap1] (using "dev tap" in the config)
|
v
xenbr0 <--[eth0] 192.168.110.1/24
^
|
---- vm's
openvpn[17102]: TUN/TAP device tap1 opened
openvpn[17102]: TUN/TAP TX queue length set to 100
openvpn[17102]: /etc/openvpn/up tap1 1500 1574 init
openvpn[17102]: SYSTEM[3] '/etc/openvpn/up tap1 1500 1574 init'
openvpn[17102]: ENV [0] 'script_type=up'
openvpn[17102]: ENV [1] 'dev=tap1'
openvpn[17102]: ENV [2] 'link_mtu=1574'
openvpn[17102]: ENV [3] 'tun_mtu=1500'
openvpn[17102]: ENV [4] 'script_context=init'
openvpn[17102]: ENV [5] 'config=/etc/openvpn/server.conf'
openvpn[17102]: ENV [6] 'proto=udp'
openvpn[17102]: ENV [7] 'local=172.16.0.1'
openvpn[17102]: ENV [8] 'local_port=1194'
openvpn[17102]: ENV [9] 'verb=11'
openvpn[17102]: ENV [10] 'daemon=1'
openvpn[17102]: ENV [11] 'daemon_log_redirect=0'
kernel: device tap1 entered promiscuous mode
kernel: xenbr0: port 5(tap1) entering learning state
kernel: xenbr0: topology change detected, propagating
kernel: xenbr0: port 5(tap1) entering forwarding state
openvpn[17102]: SYSTEM return=0
Server config:
mode server
local 172.16.0.1
port 1194
proto udp
dev tap
up /etc/openvpn/up
down /etc/openvpn/down
ccd-exclusive
client-config-dir /etc/openvpn/clients
tls-server
[...]
Client config in /etc/openvpn/clients/client1 on the server:
ifconfig-push 192.168.110.3 255.255.255.0
push "route-gateway 192.168.110.1"
Script on the server:
/etc/openvpn/up:
#!/bin/sh
bridge="xenbr0"
tapdev="${1}"
tapmtu="${2}"
if test -e "/sys/class/net/${bridge}/brif/${tapdev}" ; then
/sbin/brctl delif ${bridge} ${tapdev} &>/dev/null
/sbin/ifconfig ${tapdev} down &>/dev/null
fi
if test ! -e "/sys/class/net/${bridge}/brif/${tapdev}" ; then
/sbin/brctl addif ${bridge} ${tapdev}
/sbin/ifconfig ${tapdev} up
fi
/etc/openvpn/down:
#!/bin/sh
bridge="xenbr0"
tapdev="${1}"
tapmtu="${2}"
if test -e "/sys/class/net/${bridge}/brif/${tapdev}" ; then
/sbin/brctl delif ${bridge} ${tapdev} &>/dev/null
fi
if test -e "/sys/class/net/${tapdev}" ; then
/sbin/ifconfig ${tapdev} down &>/dev/null
fi
--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
| < Previous | Next > |