core icon indicating copy to clipboard operation
core copied to clipboard
verified publisher icon opnsense

OpenVPN: Client Specific Overrides - IP Error in generate file with use Topology P2P

Open hvalencia89 opened this issue 2 years ago • 6 comments

Important notices

Before you add a new report, we ask you kindly to acknowledge the following:

  • [x] I have read the contributing guide lines at https://github.com/opnsense/core/blob/master/CONTRIBUTING.md
  • [x] I am convinced that my issue is new after having checked both open and closed issues at https://github.com/opnsense/core/issues?q=is%3Aissue

Describe the bug

Error in file with use OpenVPN: Client Specific Overrides by use Topology P2P

Tip: to validate your setup was working with the previous version, use opnsense-revert (https://docs.opnsense.org/manual/opnsense_tools.html#opnsense-revert)

To Reproduce

in menu VPN: OpenVPN: Client Specific Overrides

imagen

Generate file

imagen

In documentation OpenVPN for Topology p2p

imagen

Expected behavior

imagen

Describe alternatives you considered

A clear and concise description of any alternative solutions or workaround you considered.

Screenshots

imagen

Relevant log files

imagen

Additional context

Add any other context about the problem here.

Environment

OPNsense 23.7.10_1-amd64 FreeBSD 13.2-RELEASE-p7 OpenSSL 1.1.1w

hvalencia89 avatar Dec 13 '23 02:12 hvalencia89

choose a valid subnet? /32 is a single address, you need at least two to calculate both ends.

https://github.com/opnsense/core/blob/549c180e92d6a56f19f9b6a8d29286c5e5d86956/src/etc/inc/plugins.inc.d/openvpn.inc#L985-L989

AdSchellevis avatar Dec 13 '23 07:12 AdSchellevis

Documentacion OpenVPN

https://community.openvpn.net/openvpn/wiki/Concepts-Addressing

Examples for p2p topology

imagen imagen

Logs OPNsense

imagen imagen imagen

and what is the correct format ip for this case Topology P2P in the box Client Specific Overrides option IPv4 Tunnel Network

hvalencia89 avatar Dec 14 '23 03:12 hvalencia89

.. I know what the documentation looks like, merely explaining here topology subnet expects two addresses (server, client) which in our case is specified by a network. /32 is a host, anything smaller than that is a net.... (https://docs.opnsense.org/manual/vpnet.html#client-specific-overrides)

AdSchellevis avatar Dec 14 '23 07:12 AdSchellevis

After reviewing the code in the case of the P2P topology in OpenVPN an adjustment must be made so that the serverip is always the same in all cases and only the clientip IP changes.

hvalencia89 avatar Dec 15 '23 01:12 hvalencia89

Hello Guys,

Where do you store the Topology variables "subnet", "net 30" and "p2p" to be able to make some adjustments or do I have to design the moto to obtain them from the file?

Greetings

htoxqui89 avatar Apr 08 '24 03:04 htoxqui89

I cat not view value "subnet", "net 30" and "p2p" for this server running in my lab

Array $server

imagen

Array settings

imagen

htoxqui89 avatar Apr 08 '24 03:04 htoxqui89

This issue has been automatically timed-out (after 180 days of inactivity).

For more information about the policies for this repository, please read https://github.com/opnsense/core/blob/master/CONTRIBUTING.md for further details.

If someone wants to step up and work on this issue, just let us know, so we can reopen the issue and assign an owner to it.

OPNsense-bot avatar Jun 10 '24 01:06 OPNsense-bot