[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

[Openvpn-users] IP reservations ignored if dhcp-option is used


  • Subject: [Openvpn-users] IP reservations ignored if dhcp-option is used
  • From: Gustavo Homem <gustavo@xxxxxxxxxxxxxxx>
  • Date: Mon, 29 Oct 2007 17:31:45 +0000

Hi,

I have setup OpenVpn in routing mode with specific client IPs sent via ccc/clientname files.

All working fine until I decided to push the DNS servers via:

push "dhcp-option DNS 10.10.0.31"
push "dhcp-option DNS 10.10.0.32"

on the server.conf file.

The servers are indeed pushed but for windows clients OpenVpn doesn't push the right IP anymore, although it sitll does for Linux clients.

An extract from the log during sessions with user SIGWireless:

Linux client:

Mon Oct 29 18:08:07 2007 us=707958 213.58.45.91:33145 [SIGWireless] Peer Connection Initiated with 213.58.45.91:33145
Mon Oct 29 18:08:07 2007 us=714547 SIGWireless/213.58.45.91:33145 PLUGIN_CALL: POST /usr/lib/openvpn/openvpn-auth-ldap.so/PLUGIN_CLIENT_DISCONNECT status=0
Mon Oct 29 18:08:07 2007 us=714717 OPTIONS IMPORT: reading client specific options from: ccd/SIGWireless
Mon Oct 29 18:08:07 2007 us=721026 PLUGIN_CALL: POST /usr/lib/openvpn/openvpn-auth-ldap.so/PLUGIN_CLIENT_CONNECT status=0
Mon Oct 29 18:08:07 2007 us=721064 MULTI: Learn: 10.8.0.5 -> SIGWireless/213.58.45.91:33145
Mon Oct 29 18:08:07 2007 us=721085 MULTI: primary virtual IP for SIGWireless/213.58.45.91:33145: 10.8.0.5
RMon Oct 29 18:08:08 2007 us=848181 SIGWireless/213.58.45.91:33145 PUSH: Received control message: 'PUSH_REQUEST'
Mon Oct 29 18:08:08 2007 us=848241 SIGWireless/213.58.45.91:33145 SENT CONTROL [SIGWireless]: 'PUSH_REPLY,route 10.10.0.0 255.255.0.0,dhcp-option DNS 10.10.0.31,dhcp-option DNS 10.10.0.32,route 10.8.0.1,topology net30,ping 10,ping-restart 120,ifconfig 10.8.0.5 10.8.0.6' (status=1)

(client receives the right IP -> 10.8.0.5)

Windows client:

Mon Oct 29 18:09:21 2007 us=990784 XXXXXXXX:2530 [sigwireless] Peer Connection Initiated with XXXXXXXXXXX:2530
Mon Oct 29 18:09:21 2007 us=998372 sigwireless/XXXXXXXX:2530 PLUGIN_CALL: POST /usr/lib/openvpn/openvpn-auth-ldap.so/PLUGIN_CLIENT_CONNECT status=0
Mon Oct 29 18:09:21 2007 us=998409 sigwireless/XXXXXXXXX:2530 MULTI: Learn: 10.8.0.18 -> sigwireless/XXXXXXXXXXXXXX:2530
Mon Oct 29 18:09:21 2007 us=998431 sigwireless/XXXXXXXXXXXXXX:2530 MULTI: primary virtual IP for sigwireless/XXXXXXXXXXXXXXXX:2530: 10.8.0.18
RMon Oct 29 18:09:23 2007 us=112953 sigwireless/XXXXXXXXX:2530 PUSH: Received control message: 'PUSH_REQUEST'
Mon Oct 29 18:09:23 2007 us=113005 sigwireless/XXXXXXXXXXXX:2530 SENT CONTROL [sigwireless]: 'PUSH_REPLY,route 10.10.0.0 255.255.0.0,dhcp-option DNS 10.10.0.31,dhcp-option DNS 10.10.0.32,route 10.8.0.1,topology net30,ping 10,ping-restart 120,ifconfig 10.8.0.18 10.8.0.17' (status=1)

(client receives an IP from the pool - 10.8.0.18 , instead of the specific IP that was reserved on ccd/SIGWireless)

As we can see from the logs, a connection with the Windows client doesn't trigger an OPTIONS IMPORT.

If I remove the push "dhcp-option DNS 10.10.0.31" from server.conf, the IP reservations work fine both on windows and linux.

Any ideas?

Best regards
Gustavo
______________________
OpenVPN mailing lists
https://lists.sourceforge.net/lists/listinfo/openvpn-users