Jan Just Keijser schreef op 27-05-2017 22:48:
On 23/05/17 00:25, Xen wrote:
Been trying to get this working for several years now lol.
if all external hosts can reach the server but you (internal host? vpn
server?) then it's - as always - a routing or NATting issue.
<shameless plug>
This _IS_ covered in a recipe of my OpenVPN cookbook
</shameless_plug>
No I got the routing set up and it works as usual normally but I add the
routes using a learn-address script for each individual host because
that allows me to combine tcp and udp on the same subnet.
I just can't diagnose this properly now but the routes had been
"unlearned" and then upon reconnect not "relearned". I was just
wondering if there was any default wisdom in knowing what to do about
these events.
Also it seems obvious to me now to ensure the thing doensn't hang (the
scripts you issue).
So the routingt is actually okay but I am having difficulty in ensuring
reliablity in those "context" things.
So: the thing generally works perfectly, but it doesn't always work
perfectly.
It's more the "init scripts" section that seems to be failing for me.
I....
Don't really know if I'm doing it right, but....
I have two different sections in the client config, one for udp and one
for tcp.
It first tries udp, then it tries tcp, but I don't really know how I can
get it to "recycle" back to udp.
Eventually I found that eventually the thing will stop reconnecting.
I don't know why or how to configure that so I started running
host-based restart scripts in the end.
Because no matter how perfectly openvpn really operates, I would find
that my VPN had been down for several days and my backups didn't run and
stuff like that, because the client daemon had stopped reconnecting
after some disconnect....
This time with the leanr address thing the route had not been set up
like it usually would and I didn't really know what caused it unless
maybe some hanging connect script or something.
I have a perfectly adequate setup but I don't know the mechanics of what
happens when some script hangs.
Regards.
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
Openvpn-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openvpn-users
