Opened 3 years ago
Closed 3 years ago
#1420 closed Bug / Defect (notabug)
Script-security 2 do not sent remote client ip when use topology subnet.
Reported by: | maxim4 | Owned by: | |
---|---|---|---|
Priority: | major | Milestone: | release 2.5.2 |
Component: | Networking | Version: | OpenVPN 2.5.1 (Community Ed) |
Severity: | Not set (select this one, unless your'e a OpenVPN developer) | Keywords: | |
Cc: |
Description
Script-security 2 do not sent remote client ip when use topology subnet. Instead, mask is returned.
Config:
mode server
dev tun0
server 10.20.0.0 255.255.0.0
keepalive 10 120
topology subnet
script-security 2
up /etc/openvpn/scripts/up.sh
script up.sh:
#!/bin/bash
echo $@ >> /etc/openvpn/scripts/up.log
up.log:
tun0 1500 1621 10.20.0.1 255.255.0.0 init
tun0 1500 1621 10.20.0.1 255.255.0.0 init
Where 10.20.0.1 is ip address of openvpn server and next mask of subnet instead of ip address of openvpn client.
Change History (2)
comment:1 Changed 3 years ago by
comment:2 Changed 3 years ago by
Resolution: | → notabug |
---|---|
Status: | new → closed |
Note: See
TracTickets for help on using
tickets.
When using
--topology subnet
the second parameter to--ifconfig
is always a netmask.Also, the IP address which you assume to be the client IP when using defailt
--topology
is not the client IP address.