[Bug 299922] New: openvpn and xen try to use same tun device
https://bugzilla.novell.com/show_bug.cgi?id=299922 Summary: openvpn and xen try to use same tun device Product: openSUSE 10.2 Version: Final Platform: x86-64 OS/Version: openSUSE 10.2 Status: NEW Severity: Normal Priority: P5 - None Component: Network AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: Frank@explido.us QAContact: qa@suse.de Found By: Other The startup and configuration scripts for openvpn and xen both try to use the same tun device at startup which breaks network connectivity for all virtual xen systems as well as for openvpn. tap0 gets setup by xen and is bound to the xen demon (blktapctrl) however open vpn creates a tun device as well (actually tap1) and tries to set the network setting on it as tap0 which breaks the tap0 interface. There seems to be a bit more confusion in the networking once that happens. Disabling openvpn solved the problem, beside that it leaves openvpn unusable. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=299922 Andreas Jaeger <aj@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |cgriffin@novell.com AssignedTo|bnc-team- |mt@novell.com |screening@forge.provo.novell| |.com | -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=299922 Marius Tomaschewski <mt@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |ASSIGNED -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=299922#c1 Marius Tomaschewski <mt@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |NEEDINFO Info Provider| |Frank@explido.us --- Comment #1 from Marius Tomaschewski <mt@novell.com> 2007-08-14 09:40:52 MST --- Please attach your openvpn config file (remove secrets from it). -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=299922#c2 Marius Tomaschewski <mt@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |RESOLVED Info Provider|Frank@explido.us | Resolution| |INVALID --- Comment #2 from Marius Tomaschewski <mt@novell.com> 2007-09-03 03:04:58 MST --- Works fine for me. Must be a problem with your configuration (e.g. hard coded tap0 in the config or a script). Client Server 172.16.0.3/24 -openvpn-> [eth1] 172.16.0.1/24 ^ | | | [tap0] | 192.168.110.3/24 [tap1] (using "dev tap" in the config) | v xenbr0 <--[eth0] 192.168.110.1/24 ^ | ---- vm's openvpn[17102]: TUN/TAP device tap1 opened openvpn[17102]: TUN/TAP TX queue length set to 100 openvpn[17102]: /etc/openvpn/up tap1 1500 1574 init openvpn[17102]: SYSTEM[3] '/etc/openvpn/up tap1 1500 1574 init' openvpn[17102]: ENV [0] 'script_type=up' openvpn[17102]: ENV [1] 'dev=tap1' openvpn[17102]: ENV [2] 'link_mtu=1574' openvpn[17102]: ENV [3] 'tun_mtu=1500' openvpn[17102]: ENV [4] 'script_context=init' openvpn[17102]: ENV [5] 'config=/etc/openvpn/server.conf' openvpn[17102]: ENV [6] 'proto=udp' openvpn[17102]: ENV [7] 'local=172.16.0.1' openvpn[17102]: ENV [8] 'local_port=1194' openvpn[17102]: ENV [9] 'verb=11' openvpn[17102]: ENV [10] 'daemon=1' openvpn[17102]: ENV [11] 'daemon_log_redirect=0' kernel: device tap1 entered promiscuous mode kernel: xenbr0: port 5(tap1) entering learning state kernel: xenbr0: topology change detected, propagating kernel: xenbr0: port 5(tap1) entering forwarding state openvpn[17102]: SYSTEM return=0 Server config: mode server local 172.16.0.1 port 1194 proto udp dev tap up /etc/openvpn/up down /etc/openvpn/down ccd-exclusive client-config-dir /etc/openvpn/clients tls-server [...] Client config in /etc/openvpn/clients/client1 on the server: ifconfig-push 192.168.110.3 255.255.255.0 push "route-gateway 192.168.110.1" Script on the server: /etc/openvpn/up: #!/bin/sh bridge="xenbr0" tapdev="${1}" tapmtu="${2}" if test -e "/sys/class/net/${bridge}/brif/${tapdev}" ; then /sbin/brctl delif ${bridge} ${tapdev} &>/dev/null /sbin/ifconfig ${tapdev} down &>/dev/null fi if test ! -e "/sys/class/net/${bridge}/brif/${tapdev}" ; then /sbin/brctl addif ${bridge} ${tapdev} /sbin/ifconfig ${tapdev} up fi /etc/openvpn/down: #!/bin/sh bridge="xenbr0" tapdev="${1}" tapmtu="${2}" if test -e "/sys/class/net/${bridge}/brif/${tapdev}" ; then /sbin/brctl delif ${bridge} ${tapdev} &>/dev/null fi if test -e "/sys/class/net/${tapdev}" ; then /sbin/ifconfig ${tapdev} down &>/dev/null fi -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com