Re: [Openvpn-devel] [PATCH] TAP driver for Solaris patch

Fri, 29 Oct 2010 12:26:10 +0000 

Kazuyoshi-San,

On Mon, Sep 06, 2010 at 11:13:09PM +0900, Kazuyoshi Aizawa wrote:
> I attached a patch for OpenVPN 2.1.3 to support TAP driver for Solaris.
> Also, you can find the patch as well as TAP driver here.
>      http://www.whiteboard.ne.jp/~admin2/tuntap/

Thanks for your work.  I am working on integration of your patch into 
the 2.2 tree in git, so that it can go into OpenVPN 2.2-beta4 and be part
of the regular OpenVPN distribution in future.

I have tested it on OpenSolaris/i386, latest DVD release.

The patch applies without major problems (offset by 11 lines, but no other
problems), "--mode tap" works fine, and "--mode tun" continues to work
(which was important to test for me, as your patch changes bits of the
"tun" code as well).


One oddity remains: "--mode tun" + "--topology subnet" (not using 
point-to-point but "broadcast" tun interfaces) does not work.  I'm not 
sure whether this is a known limitation of the Solaris tun drivers, or 
of the way we currently access the interface - but it would be great 
if that could made to work - it's part of my set of regression tests...  
(this is *not* a problem introduced by your patch, it does not work for 
stock 2.2-beta3 either).


The failure looks like this in the log:

Fri Oct 29 14:00:02 2010 SENT CONTROL [server-test]: 'PUSH_REQUEST' (status=1)
Fri Oct 29 14:00:02 2010 PUSH: Received control message: 
'PUSH_REPLY,ifconfig-ipv6 2001:608:4:a052::1:0 2001:608:4:a052::1,route 
10.100.0.0 255.255.0.0,route-ipv6 2001:608:4:a000::/56,tun-ipv6,route-gateway 
10.100.52.1,topology subnet,ping 10,ping-restart 30,ifconfig 10.100.52.2 
255.255.255.0'
Fri Oct 29 14:00:02 2010 ROUTE: default_gateway=UNDEF
Fri Oct 29 14:00:02 2010 TUN/TAP device tun0 opened
Fri Oct 29 14:00:02 2010 /usr/sbin/ifconfig tun0 10.100.52.2 netmask 
255.255.255.0 broadcast + up
Fri Oct 29 14:00:02 2010 Solaris ifconfig phase-2 failed: external program 
exited with error status: 1
Fri Oct 29 14:00:02 2010 /usr/sbin/ifconfig tun0 unplumb
Fri Oct 29 14:00:02 2010 Can't unlink interface(ip): Invalid argument (errno=22)
Fri Oct 29 14:00:02 2010 Solaris ifconfig failed
Fri Oct 29 14:00:02 2010 Exiting

and to trigger it, you basically just add "topology subnet" to your 
existing server config.  The benefit of "topology subnet" is that you 
do not need a dedicated /30 per client anymore, but that even windows
clients can share a large subnet, with a single address used per client.

regards,

gert
-- 
USENET is *not* the non-clickable part of WWW!
                                                           //www.muc.de/~gert/
Gert Doering - Munich, Germany                             [email protected]
fax: +49-89-35655025                        [email protected]

Attachment: pgpW8D5HgRlzy.pgp
Description: PGP signature

Reply via email to