Re: NetworkManager doesnt save the ip address
- From: Patrick Steiner <patrick helmsdeep at>
- To: networkmanager-list gnome org
- Subject: Re: NetworkManager doesnt save the ip address
- Date: Mon, 30 Mar 2009 20:48:47 +0200
Patrick Steiner wrote:
Dan Williams wrote:
On Tue, 2009-03-24 at 20:00 +0100, Patrick Steiner wrote:
Dan Williams wrote:
On Tue, 2009-03-24 at 12:21 -0400, Dan Williams wrote:
On Tue, 2009-03-24 at 17:10 +0100, Patrick Steiner wrote:
On Mon, 23 Mar 2009 18:59:16 -0400, Dan Williams <dcbw redhat com> wrote:
On Mon, 2009-03-23 at 21:27 +0100, Patrick Steiner wrote:
Dan Williams wrote:
On Mon, 2009-03-23 at 07:42 +0100, Patrick Steiner wrote:
Dan Williams wrote:
On Fri, 2009-03-13 at 09:15 +0100, Patrick Steiner wrote:
Hi,
i have setup a openvpn tunnel and if i setup this via a simple
openvpn
config file all works fine. But if i try to import (or build
from
scratch) to the nm-connection-editor the Local IP Address gets
lost. It
also isnt saved into the gconf file. If I open the
nm-connection-editor
again I get the following error:
I've just fixed that in the NM openvpn plugin upstream (r55 and
56),
thanks for pointing it out. Does the static key file get imported
correctly? If not, does it actually exist in the path that config
file
says it does? (ie, if no path is given it would need to be in the
same
directory as the config file, I think).
Dan
I have tested the latest upstream (r59) now I am able to save the
the
local ip. But there is now input field for a remote ip.
It also does not set the remote ip if I import a config file.
Remote IP should map to the "Gateway" box at the top of the VPN page.
Dan
No, the gateway is the official ip address and not the ip address of
the openvpn tunnel.
Fixed in openvpn trunk (63) and 0.7 (64). Please test and let me know
if this works for you.
The remote and local ip gets saved now. But here is the next problem.
I get the following error:
WARNING **: <WARN> helper_failed(): nm-openvpn-service-openvpn-helper did
not receive a valid VPN Gateway from openvpn
this error comes from:
nm-openvpn-service-openvpn-helper.c line 303 (r66)
getenv("trusted_ip") where should this be set?
trusted_ip *should* be the same thing you set "remote" to in the config
file. is that not the case?
Erroneous manpages strike again.
Looking at the code, it seems that trusted/untrusted may not be set when
not using TLS. In that case, can you get a dump of the environment
passed to the openvpn 'ipchange' script for your static key case for me
Sure but I do not know how I can do this.
Can you give me some hints?
Move /usr/libexec/nm-openvpn-service-openvpn-helper
to /usr/libexec/nm-openvpn-service-openvpn-helper.ORIG, then
make /usr/libexec/nm-openvpn-service-openvpn-helper a short script:
#!/bin/sh
env > /tmp/openvpn.env
/usr/libexec/nm-openvpn-service-openvpn-helper.ORIG $@
and chmod that to 0755, then run the VPN. Grab /tmp/openvpn.env and
mail it to me. Then we can see what openvpn is actually delivering to
the helper.
Here is the output of the tmp file:
ifconfig_remote=192.168.10.30
ifconfig_local=192.168.10.31
proto_1=udp
tun_mtu=1500
script_type=up
verb=1
local_port_1=0
dev=tun0
remote_port_1=0
PWD=/root
daemon=0
SHLVL=1
script_context=init
daemon_log_redirect=0
link_mtu=1545
_=/bin/env
so it looks like the trusted_ip environment variable is not set.
i finally connected to my vpn via nm.
things i have to do:
made a nm-openvpn-service-openvpn-helper wrapper script:
#!/bin/sh
export trusted_ip=MYVPNSERVER
env > /tmp/openvpn.env
/usr/libexec/nm-openvpn-service-openvpn-helper.ORIG $@
I have also changed something in the openvpn-plugin source code:
Index: src/nm-openvpn-service.c
===================================================================
--- src/nm-openvpn-service.c (revision 68)
+++ src/nm-openvpn-service.c (working copy)
@@ -640,7 +640,9 @@
if (tmp && !strcmp (tmp, "yes"))
add_openvpn_arg (args, "--comp-lzo");
- add_openvpn_arg (args, "--nobind");
+ //add_openvpn_arg (args, "--nobind");
+ add_openvpn_arg (args, "--fragment");
+ add_openvpn_arg (args, "1300");
/* Device, either tun or tap */
add_openvpn_arg (args, "--dev");
@@ -729,7 +731,7 @@
add_openvpn_arg (args, "--management-query-passwords");
/* do not let openvpn setup routes, NM will handle it */
- add_openvpn_arg (args, "--route-noexec");
+ //add_openvpn_arg (args, "--route-noexec");
/* Now append configuration options which are dependent on the
configuration type */
if (!strcmp (connection_type, NM_OPENVPN_CONTYPE_TLS)) {
Perhaps this helps...
patrick
--
Patrick Steiner | patrick helmsdeep at
ICQ: 128261350
WWW: http://www.helmsdeep.at/~pat
working on (tux4u.skynet):
Fedora release 10 (Cambridge)
GNU/Linux 2.6.27.15-170.2.24.fc10.x86_64
Index: src/nm-openvpn-service.c
===================================================================
--- src/nm-openvpn-service.c (revision 68)
+++ src/nm-openvpn-service.c (working copy)
@@ -640,7 +640,9 @@
if (tmp && !strcmp (tmp, "yes"))
add_openvpn_arg (args, "--comp-lzo");
- add_openvpn_arg (args, "--nobind");
+ //add_openvpn_arg (args, "--nobind");
+ add_openvpn_arg (args, "--fragment");
+ add_openvpn_arg (args, "1300");
/* Device, either tun or tap */
add_openvpn_arg (args, "--dev");
@@ -729,7 +731,7 @@
add_openvpn_arg (args, "--management-query-passwords");
/* do not let openvpn setup routes, NM will handle it */
- add_openvpn_arg (args, "--route-noexec");
+ //add_openvpn_arg (args, "--route-noexec");
/* Now append configuration options which are dependent on the configuration type */
if (!strcmp (connection_type, NM_OPENVPN_CONTYPE_TLS)) {
[
Date Prev][
Date Next] [
Thread Prev][
Thread Next]
[
Thread Index]
[
Date Index]
[
Author Index]