Bug Report: OVPN and changed green

["R. W. Rodolico" <rodo@dailydata.net>]

[-- Attachment #1: Type: text/plain, Size: 1233 bytes --]

This MAY not be a bug. I was part of the testing for the original
openVPN ccd stuff and, when I upgraded the router that I had modified to
77, I did several things at one time. However, it appears to be a bug.
Here is exactly what I did. Note: I do not think #3 had anything to do
with this.

1. Upgraded from v75 to v77. Forgot to reboot.
2. Modified green interface to set subnet mask to /23 vs /24
3. Changed external IP.

When I did the above, many vpn connections did not have access to the
network. These were mainly the ones I had modified in the past to have
fixed IP addresses (with hard coded IPTables rules to allow them
access). Again, likely not part of the problem, but included for
completeness.

However, when I looked at the other files in ccd/, I noticed none of
them had the new subnet mask in the push statement. Thus, users would
not have the ability to get to the full range of green.

Very low priority as anyone changing this should know enough to go in
and edit it. But, should there be some script fired off when the green
interface changes that sets the new IP/subnet on the OVPN connections?

Rod


-- 
R. W. Rodolico
Daily Data, Inc.
POB 140465
Dallas TX 75214-0465
214.827.2170
http://www.dailydata.net