Dear List.
I put together a new package. Please be so kind and test it. Especially the routing functions should be tested. Please try to enter INVALID ip-Addresses and try to test if my checks work.
I have spend a lot of time to implement the feature that there are more than one route for each client. The checks test every route if it already exists for the ovpn server or for other clients. Even a check is implemented if a route 10.10.10.0/24 exists and one tries to enter 10.10.10.0/23. Here comes a function that checks if a route is within an already given subnet. (very cool :-) )
Some Bugs are fixed which Erik mentioned.
As always please comment what your impressions are.
Thank you
Alexander Marx
Fachinformatiker Systemintegration
Okay, please re-use the old email thread. Everyone who replies to an email about the CCD topic starts a new thread. Those get hard to follow. Some even have subjects that just say "testing" which is pretty shit when you are searching for something later.
On Thu, 2012-11-01 at 14:22 +0100, Alexander Marx wrote:
Dear List.
I put together a new package. Please be so kind and test it. Especially the routing functions should be tested. Please try to enter INVALID ip-Addresses and try to test if my checks work.
Typing multiple routes where one contains an error, the whole route configuration gets reset. Also the error message just says which route is invalid by numbering them. The numbers didn't work for me.
I have spend a lot of time to implement the feature that there are more than one route for each client. The checks test every route if it already exists for the ovpn server or for other clients. Even a check is implemented if a route 10.10.10.0/24 exists and one tries to enter 10.10.10.0/23. Here comes a function that checks if a route is within an already given subnet. (very cool :-) )
The redirect gateway option does not work here. The client shows an error message:
Options error: unknown --redirect-gateway flag: df1
When I change from a the dynamic lease pool to a statically assigned address, I need to restart the OpenVPN server which is bollocks. Can we just send a SIGHUP to it so changes in the CCD configuration files are taken into account immediately?
When I don't enter an additional route, the route to the green network is pushed and working fine. In case I enter my green network, no route is set on the client at all. I can enter the network that is configured on the CCD page which is kind of superfluous. None of the routes that have been set are visible on the client. They just don't work.
As always please comment what your impressions are.
There is a major bug in FF. The table on the top of the OpenVPN main page is stretched over the navigation. The navigation isn't usable anymore. I would recommend to remove the restart button.
Michael