hi all , openvpn will fail on v2.3 if you are using `client specific overrides` where `iroute` and `push route` are being used:
if the `tunnel network` is: 10.16.52.8/30 and the `advanced section`: iroute 172.16.32.0 255.255.255.0; push "route 10.0.0.0 255.0.0.0"; push "route 172.16.0.0 255.240.0.0.0" the remote end will receive: /sbin/route add -net 172.16.0.0 10.16.52.1 255.240.0.0 -----------------------------------------^ this bombs as the remote end is using 10.16.52.9 for remote end point the remote route should have been /sbin/route add -net 172.16.0.0 10.16.52.9 255.240.0.0 i have been to stop the hemorrhage by using 10.16.52.0/30 as the tunnel network, however, if you have multiple ips on the tunnel, it will never work. thanks m _______________________________________________ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
