|
|
Hello, I was having a similiar issue with routes disappearing. The routes set up by OpenVPN for it's own internal use (the /30 and /32 subnets) remained untouched, routes to the network behind the OpenVPN server disappeared however. I connect from work to my home server using Windows XP as a client and a Linux OpenVPN server. The TLS expiring keys were causing my connection to get a "soft-reset" every hour which resulted in the routes disappearing. IPAPI first deleted the routes succesfully and after reconnecting added the routes successfully according to my log files. The routes were however not succesfully added. It turned out that the TAP/TUN device under Windows XP needed more time to come back up again. Adding routes to an interface that is down will not work. I used the following directive to solve it: route-delay 20 This causes OpenVPN to wait for 20 seconds after authenticating succesfully before adding the routes to my routing table. I don't know if this directive also reflects to the "iroute" directive which controls OpenVPN's internal routing. Looking at your problem my best guess would be that you're having problems with the "iroute" directive. Your routing table is OK, but OpenVPN's internal routing is not working correctly. Perhaps you could try the following directives: route-delay 20 persist-tun Hopefully this will result in OpenVPN being able to succesfully rebuild its internal routing table (not your kernel routing table) when a ping-restart (keepalive) restart caused by your proxy server happens. Good luck, BlaaT On 4/11/06, Jon Bendtsen <jon.bendtsen@xxxxxxxxxx> wrote: > Den mandag 10.apr kl. 21:47 skrev f00ty: > > > Hi, > > > > I have setup a VPN based on OpenVpn, and it works pretty well. At one > > exception, but it's weird and i don't know where to investigate, or > > what debug option i should enable to see what's wrong with my setup. [ > > i know it's not an optimal setup. But it's the only solution i have. > > The aim of this setup is to bypass the socks 5 server, because of the > > poor windows and mac os x socks5 support. > > > > In a simplified version, here is my physical network: > > it's hard to say what the problem is without config files. > > However, consider using these configuration parameters. > > ping > ping-restart > redirect-gateway def1 > > take a look in the manual for information about what they do. > > http://openvpn.net/man.html > > > JonB > > > ------------------------------------------------------- > This SF.Net email is sponsored by xPML, a groundbreaking scripting language > that extends applications into web and mobile media. Attend the live webcast > and join the prime developer group breaking into this new coding territory! > _______________________________________________ > Openvpn-users mailing list > Openvpn-users@xxxxxxxxxxxxxxxxxxxxx > https://lists.sourceforge.net/lists/listinfo/openvpn-users > ------------------------------------------------------- This SF.Net email is sponsored by xPML, a groundbreaking scripting language that extends applications into web and mobile media. Attend the live webcast and join the prime developer group breaking into this new coding territory! Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-04/msg00203.html on line 265 Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-04/msg00203.html on line 265 |