[Bug 788568] [NEW] nm-openvpn sets default route via tun0 though that's not configured in the openvpn config file

Alexander List Thu, 26 May 2011 04:20:57 -0700

Public bug reported:

Binary package hint: network-manager-openvpn


root@roensberg:~# grep redirect /etc/openvpn/roensberg.conf 
# all clients to redirect their default
;push "redirect-gateway def1 bypass-dhcp"

May 26 12:48:57 thinkpad nm-openvpn[6028]: UDPv4 link local: [undef]
May 26 12:48:57 thinkpad nm-openvpn[6028]: UDPv4 link remote: 
[AF_INET]n.n.n.n:1194
May 26 12:48:57 thinkpad nm-openvpn[6028]: [server] Peer Connection Initiated 
with [AF_INET]n.n.n.n:1194
May 26 12:48:59 thinkpad NetworkManager[1148]:    SCPlugin-Ifupdown: devices 
added (path: /sys/devices/virtual/net/tun0, iface: tun0)
May 26 12:48:59 thinkpad nm-openvpn[6028]: TUN/TAP device tun0 opened
May 26 12:48:59 thinkpad NetworkManager[1148]:    SCPlugin-Ifupdown: device 
added (path: /sys/devices/virtual/net/tun0, iface: tun0): no ifupdown con
figuration found.
May 26 12:48:59 thinkpad nm-openvpn[6028]: /sbin/ifconfig tun0 10.4.0.6 
pointopoint 10.4.0.5 mtu 1500
May 26 12:48:59 thinkpad nm-openvpn[6028]: 
/usr/lib/network-manager-openvpn/nm-openvpn-service-openvpn-helper tun0 1500 
1542 10.4.0.6 10.4.0.5 init
May 26 12:48:59 thinkpad NetworkManager[1148]: <info> VPN connection 'myVPN' 
(IP Config Get) reply received.
May 26 12:48:59 thinkpad NetworkManager[1148]: <info> VPN Gateway: n.n.n.n
May 26 12:48:59 thinkpad NetworkManager[1148]: <info> Internal Gateway: 10.4.0.5
May 26 12:48:59 thinkpad NetworkManager[1148]: <info> Tunnel Device: tun0
May 26 12:48:59 thinkpad NetworkManager[1148]: <info> Internal IP4 Address: 
10.4.0.6
May 26 12:48:59 thinkpad NetworkManager[1148]: <info> Internal IP4 Prefix: 32
May 26 12:48:59 thinkpad NetworkManager[1148]: <info> Internal IP4 
Point-to-Point Address: 10.4.0.5
May 26 12:48:59 thinkpad NetworkManager[1148]: <info> Maximum Segment Size 
(MSS): 0
May 26 12:48:59 thinkpad NetworkManager[1148]: <info> Static Route: 
192.168.4.0/24   Next Hop: 192.168.4.0
May 26 12:48:59 thinkpad NetworkManager[1148]: <info> Static Route: 
192.168.21.0/24   Next Hop: 192.168.21.0
May 26 12:48:59 thinkpad NetworkManager[1148]: <info> Static Route: 
192.168.22.0/24   Next Hop: 192.168.22.0
May 26 12:48:59 thinkpad NetworkManager[1148]: <info> Static Route: 10.4.0.1/32 
  Next Hop: 10.4.0.1
May 26 12:48:59 thinkpad NetworkManager[1148]: <info> Forbid Default Route: no
May 26 12:48:59 thinkpad NetworkManager[1148]: <info> Internal IP4 DNS: 
192.168.4.254
May 26 12:48:59 thinkpad NetworkManager[1148]: <info> DNS Domain: 'internal'
May 26 12:48:59 thinkpad nm-openvpn[6028]: Initialization Sequence Completed
May 26 12:49:00 thinkpad NetworkManager[1148]: <info> VPN connection 'myVPN' 
(IP Config Get) complete.
May 26 12:49:00 thinkpad NetworkManager[1148]: <info> Policy set 'myVPN' (tun0) 
as default for IPv4 routing and DNS.
May 26 12:49:00 thinkpad NetworkManager[1148]: <info> VPN plugin state changed: 
4

Server SW version (Voyage Linux 0.7 i386, close to Debian Squeeze):

Desired=Unknown/Install/Remove/Purge/Hold
| Status=Not/Inst/Conf-files/Unpacked/halF-conf/Half-inst/trig-aWait/Trig-pend
|/ Err?=(none)/Reinst-required (Status,Err: uppercase=bad)
||/ Name                                         Version                        
     Description
+++-============================================-===================================-===============================================================================
ii  openvpn                                      2.1.3-2                        
     virtual private network daemon

Client SW version (Ubuntu 11.04 natty x86_64):

Desired=Unknown/Install/Remove/Purge/Hold
| Status=Not/Inst/Conf-files/Unpacked/halF-conf/Half-inst/trig-aWait/Trig-pend
|/ Err?=(none)/Reinst-required (Status,Err: uppercase=bad)
||/ Name                                      Version                           
         Description
+++-=========================================-==========================================-==========================================================================
ii  network-manager-openvpn                   
0.8.1+git.20100810t173015.1711d04-0ubuntu2 network management framework 
(OpenVPN plugin)
ii  openvpn                                   2.1.3-2ubuntu3                    
         virtual private network daemon

The effect is that all traffic gets routed via the VPN, which is not
desired unless configured that way. Without a NAT/routing rule on the
server side, Internet access on the client is broken.

The offending behaviour is documented in the log:

May 26 12:49:00 thinkpad NetworkManager[1148]: <info> Policy set 'myVPN'
(tun0) as default for IPv4 routing and DNS.

** Affects: network-manager-openvpn (Ubuntu)
     Importance: Undecided
         Status: New

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/788568

Title:
  nm-openvpn sets default route via tun0 though that's not configured in
  the openvpn config file

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 788568] [NEW] nm-openvpn sets default route via tun0 though that's not configured in the openvpn config file

Reply via email to