Opened 3 years ago

Closed 3 years ago

#1420 closed Bug / Defect (notabug)

Script-security 2 do not sent remote client ip when use topology subnet.

Reported by: maxim4 Owned by:
Priority: major Milestone: release 2.5.2
Component: Networking Version: OpenVPN 2.5.1 (Community Ed)
Severity: Not set (select this one, unless your'e a OpenVPN developer) Keywords:
Cc:

Description

Script-security 2 do not sent remote client ip when use topology subnet. Instead, mask is returned.
Config:
mode server
dev tun0
server 10.20.0.0 255.255.0.0
keepalive 10 120
topology subnet
script-security 2
up /etc/openvpn/scripts/up.sh

script up.sh:
#!/bin/bash
echo $@ >> /etc/openvpn/scripts/up.log

up.log:
tun0 1500 1621 10.20.0.1 255.255.0.0 init
tun0 1500 1621 10.20.0.1 255.255.0.0 init

Where 10.20.0.1 is ip address of openvpn server and next mask of subnet instead of ip address of openvpn client.

Change History (2)

comment:1 Changed 3 years ago by tct

When using --topology subnet the second parameter to --ifconfig is always a netmask.

Also, the IP address which you assume to be the client IP when using defailt --topology is not the client IP address.

comment:2 Changed 3 years ago by Gert Döring

Resolution: notabug
Status: newclosed
Note: See TracTickets for help on using tickets.