Re: push "redirect-gateway def1" no longer seems to work on OpenVPN plugin
On Sun, Aug 17, 2008 at 2:37 PM, Darren Albers <[EMAIL PROTECTED]> wrote: > I am running SVN 3973 and the OpenVPN plugin works well and my > specific routes are all pushed to my client but the push > "redirect-gateway def1" > seems to be failing. > > Aug 17 14:28:43 dpalap NetworkManager: Starting VPN service > 'org.freedesktop.NetworkManager.openvpn'... > Aug 17 14:28:44 dpalap NetworkManager: VPN service > 'org.freedesktop.NetworkManager.openvpn' started > (org.freedesktop.NetworkManager.openvpn), PID 17520 > Aug 17 14:28:44 dpalap NetworkManager: VPN service > 'org.freedesktop.NetworkManager.openvpn' just appeared, activating > connections > Aug 17 14:28:44 dpalap NetworkManager: VPN plugin state changed: 3 > Aug 17 14:28:44 dpalap nm-openvpn[17524]: OpenVPN 2.1_rc7 > i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] built on Jun 11 2008 > Aug 17 14:28:44 dpalap nm-openvpn[17524]: WARNING: No server > certificate verification method has been enabled. See > http://openvpn.net/howto.html#mitm for more info. > Aug 17 14:28:44 dpalap NetworkManager: VPN connection 'VPN - > 1194' (Connect) reply received. > Aug 17 14:28:44 dpalap nm-openvpn[17524]: LZO compression initialized > Aug 17 14:28:45 dpalap nm-openvpn[17524]: UDPv4 link local: [undef] > Aug 17 14:28:45 dpalap nm-openvpn[17524]: UDPv4 link remote: X.X.X.X:1194 > Aug 17 14:28:51 dpalap nm-openvpn[17524]: [..NET] Peer > Connection Initiated with X.X.X.X:1194 > Aug 17 14:28:53 dpalap kernel: [ 1639.665094] tun0: Disabled Privacy > Extensions > Aug 17 14:28:53 dpalap nm-openvpn[17524]: TUN/TAP device tun0 opened > Aug 17 14:28:53 dpalap nm-openvpn[17524]: ifconfig tun0 10.254.2.6 > pointopoint 10.254.2.5 mtu 1500 > Aug 17 14:28:53 dpalap dnsmasq[5680]: reading /etc/resolv.conf > Aug 17 14:28:53 dpalap dnsmasq[5680]: using nameserver 209.183.35.23#53 > Aug 17 14:28:53 dpalap dnsmasq[5680]: using nameserver 209.183.35.23#53 > Aug 17 14:28:53 dpalap nm-openvpn[17524]: > /usr/libexec/nm-openvpn-service-openvpn-helper tun0 1500 1542 > 10.254.2.6 10.254.2.5 init > Aug 17 14:28:53 dpalap NetworkManager: VPN connection 'VPN - > 1194' (IP Config Get) reply received. > Aug 17 14:28:53 dpalap NetworkManager: VPN Gateway: X.X.X.X > Aug 17 14:28:53 dpalap NetworkManager: Tunnel Device: tun0 > Aug 17 14:28:53 dpalap NetworkManager: Internal IP4 Address: > 10.254.2.6 > Aug 17 14:28:53 dpalap NetworkManager: Internal IP4 Prefix: 24 > Aug 17 14:28:53 dpalap NetworkManager: Internal IP4 > Point-to-Point Address: 10.254.2.5 > Aug 17 14:28:53 dpalap NetworkManager: Maximum Segment Size (MSS): 0 > Aug 17 14:28:53 dpalap NetworkManager: Static Route: > 10.60.10.0/24 Next Hop: 10.254.2.5 > Aug 17 14:28:53 dpalap NetworkManager: Static Route: > 10.254.2.0/24 Next Hop: 10.254.2.5 > Aug 17 14:28:53 dpalap NetworkManager: Internal IP4 DNS: 10.60.10.1 > Aug 17 14:28:53 dpalap NetworkManager: Internal IP4 DNS: 4.2.2.3 > Aug 17 14:28:53 dpalap NetworkManager: DNS Domain: '(none)' > Aug 17 14:28:53 dpalap NetworkManager: Login Banner: > Aug 17 14:28:53 dpalap NetworkManager: > - > Aug 17 14:28:53 dpalap NetworkManager: (null) > Aug 17 14:28:53 dpalap NetworkManager: > - > Aug 17 14:28:53 dpalap nm-openvpn[17524]: Initialization Sequence Completed > Aug 17 14:28:53 dpalap NetworkManager: VPN connection 'VPN - > 1194' (IP Config Get) complete. > > The config on the server is unchanged and previously worked on older > SVN releases and 0.6.6 > > Something similar seems to happen with the PPTP plugin. > > Here are the routes after connecting: > Kernel IP routing table > Destination Gateway Genmask Flags Metric RefUse Iface > 10.64.64.64 0.0.0.0 255.255.255.255 UH0 00 ppp0 > X.X.X.X 10.64.64.64 255.255.255.255 UGH 0 00 ppp0 > 10.60.10.0 10.254.2.5 255.255.255.0 UG0 00 tun0 > 10.254.2.0 10.254.2.5 255.255.255.0 UG0 00 tun0 > 10.254.2.0 0.0.0.0 255.255.255.0 U 0 00 tun0 > 192.168.122.0 0.0.0.0 255.255.255.0 U 0 00 vnet0 > 0.0.0.0 0.0.0.0 0.0.0.0 U 0 00 ppp0 > > > Here are the routes before: > Destination Gateway Genmask Flags Metric RefUse Iface > 10.64.64.64 0.0.0.0 255.255.255.255 UH0 00 ppp0 > 192.168.122.0 0.0.0.0 255.255.255.0 U 0 00 vnet0 > 0.0.0.0 0.0.0.0 0.0.0.0 U 0 00 ppp0 > > > If it matters all these tests are done with a ATT Aircard. > FYI: Here are the routes from the PPTP plugin which also does not work: [EMAIL PROTECTED]:~$ route -n Kernel IP routing table Destination Gateway Genmask Flags Metric RefUse Iface 0.0.0.0 10.64.64.64 255.255.255.255 UGH 0
push "redirect-gateway def1" no longer seems to work on OpenVPN plugin
I am running SVN 3973 and the OpenVPN plugin works well and my specific routes are all pushed to my client but the push "redirect-gateway def1" seems to be failing. Aug 17 14:28:43 dpalap NetworkManager: Starting VPN service 'org.freedesktop.NetworkManager.openvpn'... Aug 17 14:28:44 dpalap NetworkManager: VPN service 'org.freedesktop.NetworkManager.openvpn' started (org.freedesktop.NetworkManager.openvpn), PID 17520 Aug 17 14:28:44 dpalap NetworkManager: VPN service 'org.freedesktop.NetworkManager.openvpn' just appeared, activating connections Aug 17 14:28:44 dpalap NetworkManager: VPN plugin state changed: 3 Aug 17 14:28:44 dpalap nm-openvpn[17524]: OpenVPN 2.1_rc7 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] built on Jun 11 2008 Aug 17 14:28:44 dpalap nm-openvpn[17524]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info. Aug 17 14:28:44 dpalap NetworkManager: VPN connection 'VPN - 1194' (Connect) reply received. Aug 17 14:28:44 dpalap nm-openvpn[17524]: LZO compression initialized Aug 17 14:28:45 dpalap nm-openvpn[17524]: UDPv4 link local: [undef] Aug 17 14:28:45 dpalap nm-openvpn[17524]: UDPv4 link remote: X.X.X.X:1194 Aug 17 14:28:51 dpalap nm-openvpn[17524]: [..NET] Peer Connection Initiated with X.X.X.X:1194 Aug 17 14:28:53 dpalap kernel: [ 1639.665094] tun0: Disabled Privacy Extensions Aug 17 14:28:53 dpalap nm-openvpn[17524]: TUN/TAP device tun0 opened Aug 17 14:28:53 dpalap nm-openvpn[17524]: ifconfig tun0 10.254.2.6 pointopoint 10.254.2.5 mtu 1500 Aug 17 14:28:53 dpalap dnsmasq[5680]: reading /etc/resolv.conf Aug 17 14:28:53 dpalap dnsmasq[5680]: using nameserver 209.183.35.23#53 Aug 17 14:28:53 dpalap dnsmasq[5680]: using nameserver 209.183.35.23#53 Aug 17 14:28:53 dpalap nm-openvpn[17524]: /usr/libexec/nm-openvpn-service-openvpn-helper tun0 1500 1542 10.254.2.6 10.254.2.5 init Aug 17 14:28:53 dpalap NetworkManager: VPN connection 'VPN - 1194' (IP Config Get) reply received. Aug 17 14:28:53 dpalap NetworkManager: VPN Gateway: X.X.X.X Aug 17 14:28:53 dpalap NetworkManager: Tunnel Device: tun0 Aug 17 14:28:53 dpalap NetworkManager: Internal IP4 Address: 10.254.2.6 Aug 17 14:28:53 dpalap NetworkManager: Internal IP4 Prefix: 24 Aug 17 14:28:53 dpalap NetworkManager: Internal IP4 Point-to-Point Address: 10.254.2.5 Aug 17 14:28:53 dpalap NetworkManager: Maximum Segment Size (MSS): 0 Aug 17 14:28:53 dpalap NetworkManager: Static Route: 10.60.10.0/24 Next Hop: 10.254.2.5 Aug 17 14:28:53 dpalap NetworkManager: Static Route: 10.254.2.0/24 Next Hop: 10.254.2.5 Aug 17 14:28:53 dpalap NetworkManager: Internal IP4 DNS: 10.60.10.1 Aug 17 14:28:53 dpalap NetworkManager: Internal IP4 DNS: 4.2.2.3 Aug 17 14:28:53 dpalap NetworkManager: DNS Domain: '(none)' Aug 17 14:28:53 dpalap NetworkManager: Login Banner: Aug 17 14:28:53 dpalap NetworkManager: - Aug 17 14:28:53 dpalap NetworkManager: (null) Aug 17 14:28:53 dpalap NetworkManager: - Aug 17 14:28:53 dpalap nm-openvpn[17524]: Initialization Sequence Completed Aug 17 14:28:53 dpalap NetworkManager: VPN connection 'VPN - 1194' (IP Config Get) complete. The config on the server is unchanged and previously worked on older SVN releases and 0.6.6 Something similar seems to happen with the PPTP plugin. Here are the routes after connecting: Kernel IP routing table Destination Gateway Genmask Flags Metric RefUse Iface 10.64.64.64 0.0.0.0 255.255.255.255 UH0 00 ppp0 X.X.X.X 10.64.64.64 255.255.255.255 UGH 0 00 ppp0 10.60.10.0 10.254.2.5 255.255.255.0 UG0 00 tun0 10.254.2.0 10.254.2.5 255.255.255.0 UG0 00 tun0 10.254.2.0 0.0.0.0 255.255.255.0 U 0 00 tun0 192.168.122.0 0.0.0.0 255.255.255.0 U 0 00 vnet0 0.0.0.0 0.0.0.0 0.0.0.0 U 0 00 ppp0 Here are the routes before: Destination Gateway Genmask Flags Metric RefUse Iface 10.64.64.64 0.0.0.0 255.255.255.255 UH0 00 ppp0 192.168.122.0 0.0.0.0 255.255.255.0 U 0 00 vnet0 0.0.0.0 0.0.0.0 0.0.0.0 U 0 00 ppp0 If it matters all these tests are done with a ATT Aircard. ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list
Re: IP sec VPN
Darren Albers wrote: > On Sun, Aug 17, 2008 at 11:34 AM, Eric S. Johansson <[EMAIL PROTECTED]> wrote: >> is a possible for net manager to manage IP sec VPNs? Every time I try to use >> the VPN dialog, it tells me I have no VPN software installed. This is very >> surprising as I have both IP sec and open VPN software installed. > > The only IPSEC VPN supported are those supported by VPNC, there has > been talk on the list of creating a VPN plugin for Openswan or > something similar but AFAIK there has not been an releases. > urk. racoon is bitching about a fatal parse error. probably something I did wrong when creating the initial configuration. In any case, I will take this off to the kvpnc mailing list. ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list
Re: IP sec VPN
The only IPSEC VPN supported are those supported by VPNC, there has been talk on the list of creating a VPN plugin for Openswan or something similar but AFAIK there has not been an releases. On Sun, Aug 17, 2008 at 11:34 AM, Eric S. Johansson <[EMAIL PROTECTED]> wrote: > is a possible for net manager to manage IP sec VPNs? Every time I try to use > the VPN dialog, it tells me I have no VPN software installed. This is very > surprising as I have both IP sec and open VPN software installed. > ___ > NetworkManager-list mailing list > NetworkManager-list@gnome.org > http://mail.gnome.org/mailman/listinfo/networkmanager-list > ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list
IP sec VPN
is a possible for net manager to manage IP sec VPNs? Every time I try to use the VPN dialog, it tells me I have no VPN software installed. This is very surprising as I have both IP sec and open VPN software installed. ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list