Bug #11416: OpenVPN IPv4 Tunnel Network check - pfSense - pfSense bugtracker

Bug #11416

OpenVPN IPv4 Tunnel Network check

Added by Danilo Zrenjanin 2 months ago. Updated about 2 months ago.

Status:

New

Priority:

Normal

Assignee:

Category:

OpenVPN

Target version:

CE-Next

Start date:

02/13/2021

Due date:

% Done:

Estimated time:

Affected Version:

All

Affected Architecture:

Release Notes:

Default

Description

If you enter a host address instead of a network address into the IPv4 Tunnel Network field, the setup will be accepted, but the OpenVPN service will not start.

Status/OpenVpn
Unable to contact daemon

History

#1 Updated by Jim Pingle about 2 months ago

Status changed from New to Feedback
Target version set to CE-Next

By "host address" do you mean a single IP address without a CIDR mask ("x.x.x.x") or an FQDN?

#2 Updated by Danilo Zrenjanin about 2 months ago

A single host address with a CIDR mask. e.g., 10.0.8.1/24.

#3 Updated by Jim Pingle about 2 months ago

Status changed from Feedback to New

OK so you literally meant a host address inside a network, and not the network address.

We could do one of two things here:

Have input validation reject the input if the address is not the network address for the subnet (harsh)
Change the host address the user input into the appropriate network address on save (easier for the user, but the change may surprise them)

I'm leaning toward the latter approach, and note under the field that it should be/will be changed to a network address

Also available in: Atom PDF

Project

General

Profile

pfSense

Issues