|
|
On 4/12/06, BlaaT 0001 <blaat0001@xxxxxxxxx> wrote:
> Hello,
>
> I was having a similiar issue with routes disappearing. The routes set
> up by OpenVPN for it's own internal use (the /30 and /32 subnets)
> remained untouched, routes to the network behind the OpenVPN server
> disappeared however.
>
> I connect from work to my home server using Windows XP as a client and
> a Linux OpenVPN server. The TLS expiring keys were causing my
> connection to get a "soft-reset" every hour which resulted in the
> routes disappearing.
>
> IPAPI first deleted the routes succesfully and after reconnecting
> added the routes successfully according to my log files. The routes
> were however not succesfully added.
>
> It turned out that the TAP/TUN device under Windows XP needed more
> time to come back up again. Adding routes to an interface that is down
> will not work.
>
> I used the following directive to solve it:
> > route-delay 20
>
> This causes OpenVPN to wait for 20 seconds after authenticating
> succesfully before adding the routes to my routing table. I don't know
> if this directive also reflects to the "iroute" directive which
> controls OpenVPN's internal routing.
>
> Looking at your problem my best guess would be that you're having
> problems with the "iroute" directive. Your routing table is OK, but
> OpenVPN's internal routing is not working correctly.
>
> Perhaps you could try the following directives:
>
> route-delay 20
> persist-tun
>
> Hopefully this will result in OpenVPN being able to succesfully
> rebuild its internal routing table (not your kernel routing table)
> when a ping-restart (keepalive) restart caused by your proxy server
> happens.
>
Hmm i already have persist-tun due to privilege conservation reasons,
and ping-restart, but i did not have the route-delay one. I'll give it
a try :)
Thanks for your replies :)
--
f00ty
ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÓ+��ó^µéX¬²š'²ŠÞu¼±<Âÿj
èºw[æx,r¸©¶)à•©à�¶�{�^Û�¦™bq«b¢{"žÚ0y¶§vj�ŠW¦yØü�mzwm…éb½ì�mƵ©Ýˆ§¶�©®)žuëÞŠ^®
èëy©"ž�§¶‹aŠÉÞÁÊ�Šx-zºâòþ�m§ÿÿ±éÿjÏî³÷ÚF þwþÇýÉþH÷Žÿn'Û{ÛOÝjÛ^¸Ûÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ:—§¾™ÿºÇ²f¢–)à–+-:—§¾™ÿºÇ³ùb²Ûÿ²‹«qçè®�ÿëa¶ÚlÿÿåŠËlþÊ.Ç¢¸�þwþX¬¶ÏåŠËbú?¢—§¾™ÿºÇ
Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-04/msg00225.html on line 227
Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-04/msg00225.html on line 227
|