[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

Re: [Openvpn-users] config causes duplicate instances of the openvpnservice


  • Subject: Re: [Openvpn-users] config causes duplicate instances of the openvpnservice
  • From: Marco Fretz <mailinglist@xxxxxxx>
  • Date: Tue, 25 Sep 2007 17:02:32 +0200

hello

client-to-client has nothin to do with this 2nd instance of the openvpn 
server process i think. i think (i only think so) it has somethin to do 
with the plugin option coz i (as u see in the other topic) used a config 
like this but with user-verify-script instead of a plugin.

according to the man page u have to us client-to-client for TAP aswell. 
but i dont thik so. u can keep client-to-client in ur config. i did not 
find any difference or disadvantage. but i mean it makes no sense, 
right... TAP is a "fake" layer2 network and has nothing to do with routing.





David Balazic wrote:
> Hi!
>  
> Does clent-to-client make sesne when bridging ? All clients are 
> bridged together anyway, no ?
>  
> push "route-gateway 10.4.8.254" is redundant, it is done by the 
> server-bridge option (see manual).
>  
> David
>
> ------------------------------------------------------------------------
> *From:* openvpn-users-bounces@xxxxxxxxxxxxxxxxxxxxx on behalf of 
> Gregory Machin
> *Sent:* Tue 25-Sep-07 11:56
> *To:* openvpn-users
> *Subject:* [Openvpn-users] config causes duplicate instances of the 
> openvpnservice
>
> the following openvpn config causes duplicate instances of the service
> ... what would cause it
>
> user openvpn
> group openvpn
> ; tunnel configuration
>
> dev tap1
> server-bridge 10.4.8.254 255.255.255.0 10.4.8.230 10.4.8.232
> push "route-gateway 10.4.8.254"
> port 1195
> client-to-client
>
> #passtos
> comp-lzo
> #management 127.0.0.1 5555
> keepalive 10 120
>
> #tun-mtu 1500
> #tun-mtu-extra 32
> #mssfix 1450
>
> persist-key
> persist-tun
> persist-local-ip
> persist-remote-ip
>
> ; logging and status
>
> writepid /var/run/openvpn/remote.pid
> ifconfig-pool-persist openvpn.leases
> status /var/log/openvpn/remote-status.log
> verb 1
>
> ; certificates and authentication
>
> ca crypto-server/ca.crt
> cert crypto-server/southcape-hq.vpn.ct-net.org.crt
> key crypto-server/southcape-hq.vpn.ct-net.org.key
> dh crypto-server/dh4096.pem
>
> plugin /usr/lib/openvpn/plugin/lib/openvpn-auth-pam.so /etc/pam.d/login
> username-as-common-name
> client-cert-not-required
>
> Gregory Machin
>
> -------------------------------------------------------------------------
> This SF.net email is sponsored by: Microsoft
> Defy all challenges. Microsoft(R) Visual Studio 2005.
> http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
> _______________________________________________
> Openvpn-users mailing list
> Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
> https://lists.sourceforge.net/lists/listinfo/openvpn-users
>
> ------------------------------------------------------------------------
>
> -------------------------------------------------------------------------
> This SF.net email is sponsored by: Microsoft
> Defy all challenges. Microsoft(R) Visual Studio 2005.
> http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
> ------------------------------------------------------------------------
>
> _______________________________________________
> Openvpn-users mailing list
> Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
> https://lists.sourceforge.net/lists/listinfo/openvpn-users
>   

____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users