search

xingplus / tunnelblick

Automatically exported from code.google.com/p/tunnelblick
0 stars 0 forks source link

Redirect gateway broken on Snow Leopard #106

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago 
What steps will reproduce the problem?
1. Use OpenVPN Server on Linux
2. Enable 'redirect-gateway' on the server
3. Use OpenVPN client on Snow Leopard

What is the expected output? What do you see instead?
Gateway redirections just stop work. Everything is fine, except default route 
redirection.
Worked fine on Leopard, but suddenly stopped work on Snow Leopard

What version of Tunnelblick are you using? On what version of OS X? PPC or 
Intel?
3.0b16

Please provide any additional information below.

The output:

2009-09-09 09:33:17 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
2009-09-09 09:33:18 ifconfig 10.8.10.6 10.8.10.5'
2009-09-09 09:33:18 OPTIONS IMPORT: timers and/or timeouts modified
2009-09-09 09:33:18 OPTIONS IMPORT: --ifconfig/up options modified
2009-09-09 09:33:18 OPTIONS IMPORT: route options modified
2009-09-09 09:33:18 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options 
modified
2009-09-09 09:33:18 ROUTE default_gateway=192.168.65.57
2009-09-09 09:33:18 TUN/TAP device /dev/tun0 opened
2009-09-09 09:33:18 
2009-09-09 09:33:18 /sbin/ifconfig tun0 delete
2009-09-09 09:33:18 NOTE: Tried to delete pre-existing tun/tap instance -- No 
Problem if failure
2009-09-09 09:33:18 /sbin/ifconfig tun0 10.8.10.6 10.8.10.5 mtu 1500 netmask 
255.255.255.255 up
2009-09-09 09:33:18 
/Applications/Tunnelblick.app/Contents/Resources/client.up.osx.sh tun0 1500 
1544 10.8.10.6 10.8.10.5 init
2009-09-09 09:33:19 /sbin/route add -net [My Server IP] 192.168.65.57 
255.255.255.255
2009-09-09 09:33:19 
2009-09-09 09:33:19 /sbin/route add -net 10.8.10.0 10.8.10.5 255.255.255.0
2009-09-09 09:33:19 Initialization Sequence Completed

Default gateway redirection just disappeared.

Original issue reported on code.google.com by alexei...@gmail.com on 9 Sep 2009 at 6:44

GoogleCodeExporter commented 9 years ago 
See the discussion starting at the comment by Max Enders at
http://groups.google.com/group/tunnelblick-discuss/browse_thread/thread/2c8a749e
474868a6

According to the OpenVPN man page, "redirect-gateway" must have at least one 
"flag". They recommend the 
"def1" flag, but it depends on your network setup. The OpenVPN man page is at
http://openvpn.net/index.php/open-source/documentation/manuals/69-openvpn-21.htm
l

Please try the different flags for redirect-gateway, and let us know if any of 
them, or combinations of them, 
fix the problem.

Original comment by jkbull...@gmail.com on 9 Sep 2009 at 9:50

GoogleCodeExporter commented 9 years ago 
As discovered later, this issue exists just in B16. B14 works fine with the 
same configuration file and server.

Original comment by alexei...@gmail.com on 10 Sep 2009 at 10:09

GoogleCodeExporter commented 9 years ago 
Does this happen on Snow Leopard in 32-bit kernel mode using b16? Other reports 
have it happening only in 
64-bit kernel mode.

Original comment by jkbull...@gmail.com on 10 Sep 2009 at 10:59

GoogleCodeExporter commented 9 years ago 
I use 32bit mode.
But, this issues (with b16) exists on 10.5.7 as well

Original comment by alexei...@gmail.com on 10 Sep 2009 at 11:03

GoogleCodeExporter commented 9 years ago 
OK, thanks. Others are reporting that it does not happen if you supply an 
appropriate flag or flags to the 
redirect-gateway option. Is that true for your configuration, too?

Original comment by jkbull...@gmail.com on 10 Sep 2009 at 11:10

GoogleCodeExporter commented 9 years ago 
Thank you.
I've added 'def1' flag - now it works fine.
But it's definitely bad idea to drop 'old' behavior of 'redirect-gateway'. It 
worked fine until b16.

Original comment by alexei...@gmail.com on 11 Sep 2009 at 6:19

GoogleCodeExporter commented 9 years ago 
Moreover, it work with windows openvpn-gui, thus it is difficult to ask to 
change
corporate vpn behaviour...

Original comment by erwan.da...@gmail.com on 19 Sep 2009 at 7:35

GoogleCodeExporter commented 9 years ago

Original comment by jkbull...@gmail.com on 4 Oct 2009 at 3:33

GoogleCodeExporter commented 9 years ago 
Saw this in the OpenVPN 2.1 changelog:
2009.10.01 -- Version 2.1_rc20

* Fixed a bug introduced in 2.1_rc17 (svn r4436) where using the
  redirect-gateway option by itself, without any extra parameters,
  would cause the option to be ignored.

Original comment by mend...@gmail.com on 14 Oct 2009 at 7:45

GoogleCodeExporter commented 9 years ago 
OpenVPN 2.1_rc20 will be in the next Tunnelblick release. It has already been 
committed to the trunk.

Original comment by jkbull...@gmail.com on 14 Oct 2009 at 7:50

GoogleCodeExporter commented 9 years ago 
It still doesn't work

Original comment by Vieg...@gmail.com on 28 Oct 2009 at 8:11

GoogleCodeExporter commented 9 years ago 
This was fixed in OpenVPN version 2.1_rc20, which was included in Tunnelblick 
3.0b22 on 2009-11-01.

Original comment by jkbull...@gmail.com on 20 Mar 2010 at 11:38