Re: [Openvpn-devel] Opvenvpn as gateway

On Wednesday 22 September 2004 09:47, satind...@in.safenet-inc.com wrote: > Can openvpn be used as gateway? I place a openvpn server which forwards > requests to different servers depending upon messages sent by client. > Does openvpn provide any feature for this? What requests and messages?

Re: [Openvpn-devel] Re: [PATCH - 1 of 4] Set source address for UDP packets from multihomed server

On Tuesday 27 July 2004 11:25, James Yonan wrote: > Neil, > > Thanks for the patches... here are some comments: > > * You've obviously put a lot of effort into understanding the code to write > this patch. But did you consider any alternative approaches, such as > starting multiple OpenVPN

Re: [Openvpn-devel] Re: Interface with GUI agent

On Sunday 11 July 2004 14:51, Jan Kiszka wrote: > Mathias Sundman wrote: > > ... > > One more thing to consider... Should we consider a system running this > > service manager an open system where all locally logged on users is > > allowed to fully manage openvpn connections, which includes: > > >

Re: [Openvpn-devel] Setting source address for UDP replies on multihomed server

Hi Neil. On Friday 09 July 2004 13:19, Neil Brown wrote: > My server that I hope to use as an OPENVPN server is multi-homed. > i.e. it has multiple network interfaces and multiple addresses on > multiple subnets. > > When my openvpn client (on my notebook) tries to talk to it, it > sometimes gets

Re: [Openvpn-devel] Re: Interface with GUI agent

> > >> 1. On Windows, if the the service wrapper has started some openvpn > > >> processes before our gui agent is started, how should find out about > > >> those processes? > > >> > > >> I can think of the following ways: > > >> > > >> 1a. Ask the service wrapper via the socket interface that I'm

Re: Interface with GUI agent, was: Re: [Openvpn-devel] [Patch] revoke scripts were broken

On Saturday 03 July 2004 23:01, James Yonan wrote: > management 127.0.0.1 20001 > > This will cause OpenVPN to listen on 127.0.0.1:20001 as its management > interface port. > > It's important, of course, that the management port always be local, since > we are using it to potentially pass

Re: [Openvpn-devel] IP adress assignment to tun devices using server mode

On Monday 14 June 2004 20:49, James Yonan wrote: > Torge Szczepanek said: > > -BEGIN PGP SIGNED MESSAGE- > > Hash: SHA1 > > > > Hi! > > > > I am currently trying out OpenVPN 2.0 beta 4 using server mode. > > > > My config on the server looks like this: > > > >

Re: [Openvpn-devel] Windows Command Prompt vs. Systray Icon

On Saturday 12 June 2004 08:16, Brandon Knitter wrote: > I had a few of my users ask why the Windows OpenVPN connection was in a > Command Prompt window and not just a Systray Icon with a status window. > > You know, that's a great question. I was going to look into the code and > see what it

Re: [Openvpn-devel] how to implement the multi client in openvpn?

On Tuesday 08 June 2004 09:38, oyk wrote: > >not always. I am using udp, not tcp (tcp over tcp is prone > >to 'internal meltdown' if your network losing packets, > >and you _must_ design your network as if it does, even in reality it > >works perfectly). Also, ethheader exists only on tap devices,

Re: [Openvpn-devel] how to implement the multi client in openvpn?

On Monday 07 June 2004 15:45, oyk wrote: > Hi，guys >I want to know how the openvpn control the multi-client case in 2.0 > version. for example: > clientA---Internet---| |Internal Server1 >|Server---|Internal Server2 > clientB---Internet---|

Re: [Openvpn-devel] OpenVPN 2.0 Yo-Yo effect...

On Saturday 05 June 2004 15:36, Mike Auty wrote: > Hi, > Since I've upgraded to OpenVPN 2, I've started seeing an interesting > effect. Originally (way back at _test23) it didn't happen very much, > and seemingly a restart of either the server or client would fix it, but > recently it's

Re: [Openvpn-devel] Radius support, was: Re: [Openvpn-users] Is it possible to assign a specific ip address to a certificate?

On Saturday 29 May 2004 01:34, James Yonan wrote: > Jaye Mathisen said: > > It would be nice if openvpn could be configure to work with radius for > > routing and > > > IP assignment after the certificate was done. Would allow openvpn to be > > integrated easily > > > with

Re: [Openvpn-devel] [BUG] sometimes --ping 30 stops: select() timeout=31536000 seconds (exactly one year)!

On Saturday 29 May 2004 00:15, James Yonan wrote: > Denis, > > That looks like a possible bug in the coarse timer update logic. The > coarse timer deals with events scheduled at a resolution denoted by an > integer number of seconds, such as pings. A timeout of one year is used as > kind of

[Openvpn-devel] [BUG] sometimes --ping 30 stops: select() timeout=31536000 seconds (exactly one year)!

I was puzzled why sometimes openvpn ceases to generate '--ping 30' packets. I instrumented it a bit, here is a pseudo-patch: errlevel.h: +#define D_PING LOGLEV(4, 0, 0) /* show --ping packets */ -#define D_INTERVAL LOGLEV(8, 70, M_DEBUG) /* show interval.h

Re: [Openvpn-devel] route option deleting routes it didn't set

On Friday 28 May 2004 17:29, Alberto Gonzalez Iniesta wrote: > Hi, > > We got a bug report at Debian [1] regarding the route option. > It turns out that if a route added by openvpn is later > modified (removed and added to other iface), openvpn will modify > (delete) the later one. > > As the bug

Re: [Openvpn-devel] openvpn-2.0_beta1: tunnel MTU a bit too large

On Sunday 16 May 2004 23:49, James Yonan wrote: > Denis, > > There are two ways of setting the MTU in OpenVPN, one is to use --tun-mtu > which doesn't include any encapsulation overhead, the other is to use > --link-mtu which sets the maximum encrypted UDP datagram size sent between > OpenVPN

Re: [Openvpn-devel] openvpn-2.0_beta1: tunnel MTU a bit too large

> Or maybe I'm mistaken and I shall set --link-mtu not to the value > reported by 'ip a l dev eth0' (i.e. max IP packet size), but > to the max *UDP* packet size? 1500-28=1472, then. Not every user > knows IP overhead size. I don't. I looked at tcpdump to figure out. "Double frag" bug does not

Re: [Openvpn-devel] openvpn-2.0_beta1: Win<->Linux flood ping intermittently stops

On Thursday 13 May 2004 22:26, James Yonan wrote: > Denis, > > Would you mind running the same test with OpenVPN 1.6.0 and see if you get > the same behaviour? See my other mail. Looks like I can explain both observations. openvpn actually not to blame here. :) I even realized that 'nice +/-N'

[Openvpn-devel] Re: openvpn-2.0_beta1: Win<->Linux flood ping intermittently stops

On Thursday 13 May 2004 21:39, Denis Vlasenko wrote: > To sum up: > * opnvpn bandwidth vary too much. > * it doesn't reach ~0.5Mbyte/s. Solvable by upping openvpn process prio to 'Above normal' or 'High prio'. It will be nice if I can instruct openvpn to set prio via config file

[Openvpn-devel] openvpn-2.0_beta1: Win<->Linux flood ping intermittently stops

Hi folks, I know Linux well, but started to play with openvpn just yesterday. I am making tunnel between WinXP notebook and Linux desktop over 10Mbit link. One switch is between them, no routers. Linux: 2.6.6 WinXP: ver reports "5.1.2600" Linux side is compiled from source, Win side installed