Project

General

Profile

Actions

Bug #2991

closed

OpenVPN w/ IPv6 fails to set ifconfig-ipv6 value in conf

Added by Lakin Lowrey over 11 years ago. Updated over 11 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
-
Category:
-
Target version:
-
Start date:
05/13/2013
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
2.1-IPv6
Affected Architecture:
amd64

Description

I have two OpenVPN clients configured. Each has "IPv6 Tunnel Network" set to fd80::/64. When the conf file is generated the "ifconfig-ipv6" line does not have a value.

Actual:
ifconfig-ipv6

Expected:
ifconfig-ipv6 fe80::2 fe80::1

When I manually edit the conf files so the 'ifconfig-ipv6' line looks as the 'expected' case above both clients work just fine. Whenever the WAN connection bounces or the router reboots the conf files revert back to the 'actual' case and I have to re-edit the conf files.

I'm running:

2.1-BETA1 (amd64)
built on Tue May 7 05:04:17 EDT 2013
FreeBSD 8.3-RELEASE-p8


Files

OpenVPN- Client.png (9.32 KB) OpenVPN- Client.png Lakin Lowrey, 05/13/2013 01:44 PM
Actions #1

Updated by Jim Pingle over 11 years ago

Need more info on the config here - static key? ssl/tls? site-to-site VPN? remote access?

Actions #2

Updated by Lakin Lowrey over 11 years ago

Here's my (fixed) conf file for one client. Both clients are static key, site-to-site.

dev ovpnc2
dev-type tun
tun-ipv6
dev-node /dev/tun2
writepid /var/run/openvpn_client2.pid
#user nobody
#group nobody
script-security 3
daemon
keepalive 10 60
ping-timer-rem
persist-tun
persist-key
proto udp
cipher AES-128-CBC
up /usr/local/sbin/ovpn-linkup
down /usr/local/sbin/ovpn-linkdown
local 98.196.248.xxx
lport 0
management /var/etc/openvpn/client2.sock unix
remote xxxx.xxxx.com 1194
ifconfig 10.0.8.2 10.0.8.1
ifconfig-ipv6 fe80::2 fe80::1
route 174.136.96.xxx 255.255.255.255
route-ipv6 2607:f2f8:xxxx::1:0/112
secret /var/etc/openvpn/client2.secret
route 174.136.96.xxx 255.255.255.255

Actions #3

Updated by Lakin Lowrey over 11 years ago

Attached a screenshot of the form field that isn't working. The field value is remembered, it's always there, but it just doesn't get set in the client#.conf file.

Actions #4

Updated by Phillip Davis over 11 years ago

Turns out out be a bug/feature of Net_IPv6::compress - see https://github.com/pfsense/pfsense/pull/634

Actions #5

Updated by Lakin Lowrey over 11 years ago

I can confirm that this is fixed. Thank you!!

2.1-BETA1 (amd64)
built on Fri May 17 01:52:00 EDT 2013

Actions #6

Updated by Jim Pingle over 11 years ago

  • Status changed from New to Resolved
Actions

Also available in: Atom PDF