Re: OpenVPN and avoiding default route

From: Anders Blomdell <anders blomdell control lth se>
To: Thomas Haller <thaller redhat com>, networkmanager-list gnome org
Subject: Re: OpenVPN and avoiding default route
Date: Mon, 28 Nov 2016 14:21:19 +0100



On 2016-11-25 18:42, Thomas Haller wrote:

On Fri, 2016-11-25 at 17:08 +0100, Anders Blomdell wrote:

Would it make sense to let the OpenVPN server disable default-routing 
in network manager, for instance
by checking if a 'push "route-gateway x.y.z.w"' has been done from
the server?

I mean something like this, (nm-openvpn-service-openvpn-helper.c):

        /* Internal VPN subnet gateway */
     tmp = getenv ("route_vpn_gateway");
     if (tmp == NULL) {
             val = g_variant_new_boolean (TRUE);
             g_variant_builder_add (&ip4builder, "{sv}",
NM_VPN_PLUGIN_IP4_CONFIG_NEVER_DEFAULT, val);
     }


Hi,

This sounds like RFE https://bugzilla.gnome.org/show_bug.cgi?id=762911

Indeed it does, further investigation indicates that openvpn has to be modified
to propagate redirect-gateway/redirect-private to the up-script. Will try to look
into this and add my findings to the RFE.

/Anders

-- 
Anders Blomdell                  Email: anders blomdell control lth se
Department of Automatic Control
Lund University                  Phone:    +46 46 222 4625
P.O. Box 118                     Fax:      +46 46 138118
SE-221 00 Lund, Sweden

Follow-Ups:
- Re: OpenVPN and avoiding default route
  - From: Anders Blomdell

References:
- OpenVPN and avoiding default route
  - From: Anders Blomdell
- Re: OpenVPN and avoiding default route
  - From: Thomas Haller

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]