Date: Thu, 30 Jul 2009 14:32:16 -0700 From: Julian Elischer <julian@elischer.org> To: "Li, Qing" <qing.li@bluecoat.com> Cc: Qing Li <qingli@freebsd.org>, "Bjoern A. Zeeb" <bz@freebsd.org>, Stefan Bethke <stb@lassitu.de>, Matthias Andree <matthias.andree@gmx.de>, FreeBSD Current <freebsd-current@freebsd.org> Subject: Re: recent change to ifconfig breaks OpenVPN? Message-ID: <4A721160.5080902@elischer.org> In-Reply-To: <B583FBF374231F4A89607B4D08578A4304E22D95@bcs-mail03.internal.cacheflow.com> References: <B4AA014B-2444-40AA-A3A3-417E4B89DF90@lassitu.de><4A709126.5050102@elischer.org><3A1518B9-2C8C-4F05-9195-82C6017E4902@lassitu.de><op.uxusbswp1e62zd@merlin.emma.line.org><BEE762CA-4282-4BA8-B92B-AFC7AAE3CA9A@lassitu.de> <ABCF4747-24D4-4435-952B-EA85A2AE999F@lassitu.de> <B583FBF374231F4A89607B4D08578A4304E22D95@bcs-mail03.internal.cacheflow.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Li, Qing wrote: >> I did at least have time to figure out the commit that changed it: >> 195914 >> >>> Author: qingli >>> Date: Mon Jul 27 17:08:06 2009 >>> New Revision: 195914 >>> URL: http://svn.freebsd.org/changeset/base/195914 >>> >>> Log: >>> This patch does the following: >>> >>> - Allow loopback route to be installed for address assigned to >>> interface of IFF_POINTOPOINT type. >>> - Install loopback route for an IPv4 interface addreess when > the >>> "useloopback" sysctl variable is enabled. Similarly, install >>> loopback route for an IPv6 interface address when the sysctl >>> variable >>> "nd6_useloopback" is enabled. Deleting loopback routes for >>> interface >>> addresses is unconditional in case these sysctl variables > were >>> disabled after an interface address has been assigned. > > In 7.x and prior releases, the local-ip of the PPP links > (e.g. tun, gif, gre) is not reachable within that system. I don't > know if that really make sense. > > The Host Requirements RFC-1122, Section 3.3.4 on Local Multihoming seems > > to suggest the local-ip of a PPP link is not irrelevant as was treated > by > the implementation. > > In r195914, I added a loopback route for the local-ip of the local end > of a PPP link to make the local-ip reachable within the system. > > Since a host route is installed for the remote end, the installation > of the loopback route for the local-ip (that is the same IP as the > remote end) > fails. As Julian pointed out, the configuration from OpenVPN seems > erroneous. > > At this point I don't believe there is anything I need to fix but > comments are welcomed. > >> Setting net.link.ether.inet.useloopback=0 does not restore the >> previous behavior. >> note that he is using *ether* which seems odd. Since we are talking about tun. Is this the correct variable? > > I also verified setting (useloopback=0) * does * restore to the > previous > behavior. > > -- Qing > > > > > _______________________________________________ > freebsd-current@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-current > To unsubscribe, send any mail to "freebsd-current-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4A721160.5080902>