Re: [Ekiga-list] Bug prevents VPN use

From: Mikael Abrahamsson <swmike swm pp se>
To: Ekiga mailing list <ekiga-list gnome org>
Subject: Re: [Ekiga-list] Bug prevents VPN use
Date: Wed, 2 Oct 2013 11:56:53 +0200 (CEST)

On Wed, 2 Oct 2013, Damien Sandras wrote:

If user B has two local interfaces (eth0: 192.x and tun: 10.x), when EkigaBwill send a SIP message to userA, it will send it twice (because it can notdetermine how routing will work, that's the kernel responsibility) :- one SIP message to userA through tun0 with tun0 source IP address to userAIP and port- one SIP message to userA through eth0 with eth0 source IP address to userIP and port
One of them should work.
Your mail suggests that both messages are sent using the same interface butwith different source IP and ports. That's weird.

How does Ekiga assure that the packet is actually sent out eth0 with eth0source IP? By default routing and source address selection are completelydecoupled and if default route is to tun0, then all packets regardless ofsource address will go out tun0. One has to put policy routing in place toavoid this and assure that eth0 IP packets actually go out eth0 (and thenyou have to have the concept of multiple default routes that might changeover time that needs to influence the policy routing settings).


--
Mikael Abrahamsson    email: swmike swm pp se

Follow-Ups:
- Re: [Ekiga-list] Bug prevents VPN use
  - From: Damien Sandras

References:
- Re: [Ekiga-list] Bug prevents VPN use
  - From: Konrad Karl
- Re: [Ekiga-list] Bug prevents VPN use
  - From: Damien Sandras
- Re: [Ekiga-list] Bug prevents VPN use
  - From: Konrad Karl
- Re: [Ekiga-list] Bug prevents VPN use
  - From: Damien Sandras

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]