On 5/10/2011 06:38, Gert Doering wrote: > Hi, > > On Tue, May 10, 2011 at 03:31:56PM +0200, Jan Just Keijser wrote: >> Seth Mos wrote: >>> Here is the tun.c patch for correction of the netsh.exe commands. >>> >>> I've confirmed that the patch works on Windows XP SP2 and Windows 7. >>> >>> Patch! >>> http://iserv.nl/files/pfsense/0001-Change-the-netsh.exe-command-from-add-to-set-.-Th.patch >> please explain the rationale behind this patch: is something wrong when >> using 'ipv6 add address' ? > Without "store=active", address assignment is "sticky" and will even > survive reboots - thus making the next tunnel setup fail, because the > address is already there. On WinXP, that was not needed, but Win7 seems > to have changed the default. > >> why is the patch applied only for IPv6 addresses? > OpenVPN by default doesn't use netsh to configure IPv4 - so it might be > necessary there as well, but didn't show up yet. For IPv6, there is only > a single method of configuration - netsh - and that breaks on Win7 > otherwise. > > I have not yet tested this, but Seth has, both on XP and Win7, so "ACK!"... > > David: I think it's easiest in this case if I integrate it, and then send > it to you. It needs to go to my "based on 2.2" branch as well. > > gert > I can confirm that the IPv6 configuration stays around after disconnect. I run a openvpn server with Gert's patches, and I have to run a "cleanup" down script after I disconnect to remove the IPv6 address and route.
smime.p7s
Description: S/MIME Cryptographic Signature
