pfSense

Hello,

I'm using a snapshot of pfSense 2.1 (20120419-1059). My pfSense installation holds two distinct VPN servers (both configured in tun mode).

When using the Client Specific Override tab in OpenVPN configuration, the Tunnel Network setting is not correctly handled. In openvpn.inc file, inside openvpn_resync_csc function, there is a test against $settings['dev_mode'] to see if the ifconfig-push setting should be written using the netmask (tap mode) or using the 2 tunnel adresses (tun mode).

The problem is that $settings['dev_mode'] is empty. The 'dev_mode' setting is a server setting, located inside each server configuration ($config['openvpn']['openvpn-server'][N]['dev_mode']). Disabling the test works for me since i don't use a server in tap mode but this is not a long term solution.

When searching how to solve this bug, i have also noticed that the directory holding client specific override is the same for all the vpn servers configured (/var/etc/openvpn-csc). Not really a problem but that could lead to weird things if one uses a specific client config with the wrong server (assuming at least 2 servers running).

To solve this issue, maybye the Client Specific Override should be server dependant ? At least in the GUI in order to use the correct dev_mode setting ?

Regards.