On Thu, 16 Nov 2006, Alexander Littell wrote:
Okay, so this technically isn't an OpenVPN question. Sorry. However, maybe
someone can help me out nevertheless as the two programs are linked and I'm
having trouble getting assistance at the openvpn.se site.
Anyway, I'm trying to roll out a custo
: openvpn-devel-boun...@lists.sourceforge.net
[mailto:openvpn-devel-boun...@lists.sourceforge.net] On
Behalf Of Mathias Sundman
Sent: Tuesday, June 20, 2006 9:10 AM
To: openvpn-devel@lists.sourceforge.net
Cc: Christer Lindell; Kenneth Karlsson
Subject: [Openvpn-devel] DHCP on PocketPC port
When pushing
only care about the first
DHCP server that it gets a reply from?
As a workaround, I just used iptables on my linux server to block
forwarding of UDP67/68 packets over the bridge and the things worked just
fine.
--
_____
Mathi
On Thu, 1 Jun 2006, Stephen Borrill wrote:
Could the configuration file format be extended to allow inclusion of
relevant certs and keys in-line?
Already added in the 2.1-beta series. Snip from the changelog:
* Allow ca, cert, key, and dh files to be specified
inline via XML-like syntax wit
ther. Have you verifyed that
it really is the default in 2.1?
--
A. Because people read from top to bottom.
Q. Why should I not top-post?
_____
Mathias Sundman (^) ASCII Ribbon Campaign
NILINGS ABXNO HTML/RTF
On Thu, 20 Oct 2005, Mike Ireton wrote:
For the others who suggested reducing mss values and such - I'm
already doing it. In fact I have mss clamped down to 1312 right now for
testing. But, mss clamping doesn't have anything to do with the loss of the
lcp-echo frames I was complaining about.
On Wed, 19 Oct 2005, Mike Ireton wrote:
Suspeciously, I also have been observing an excessive number of ICMP "Frag
reassembly time exceeded" messages coming from this openvpn client directed
at the server. Putting 2 and 2 together, these excess icmp messages appear to
be being generated becaus
as well as a GUI version installation package!
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
OpenVPN GUI for Windows XNO HTML/RTF in e-mail
http://openvpn.se/ / \ NO Word docs in e-mail
e_ca.patch
--
_____
Mathias Sundman (^) ASCII Ribbon Campaign
OpenVPN GUI for Windows XNO HTML/RTF in e-mail
http://openvpn.se/ / \ NO Word docs in e-maildiff -urN openvpn-2.0.2/options.c openvpn-2.0.2-ca/options.c
--- openvpn-2.0.2/options.c Thu Aug 4 01:
u don't need to setup a whole new
box to try it, you can run several diffrent versions of OpenVPN in
parallell.
I will also support this beta release by creating Windows installation
packages with OpenVPN GUI and the OpenVPN beta.
Cheers and good night // Mathias
--
On Wed, 6 Apr 2005, Tomas Nouza wrote:
So my question is, if there is a plan to develop a
lightweigh client, that would not need a TUN/TAP
interface. Now you can say it's not possible, but it
is, with some limitations:
The client would support only tunneling, and it would
listen on config/comman
On Wed, 2 Mar 2005, ullrich dittmer wrote:
i'd like to compile a openvpn for Windows. Is there any howto, which discribes
the steps for compiling?
Check the bottom ofinstall-win32 at openvpn.net and read makefile.w32 in
the source package.
I've installed MinGW, compiled lzo and OpenSSL. Wh
On Thu, 3 Mar 2005, Leonid Zamotaev wrote:
Connection speed detected for "TAP-Win32 Adapter V8" is equal 10Mbit and
can`t be changed. But I NEED to use 100Mbit (fastethernet) tunel.
Just ignore that info. The TAP device will use up to 100 Mbps if your CPU
is fast enough...
/Mathias
Even though we havn't had any problems with the NSIS 2.0b3 based
windows installation package, I thought it would look a little more
professional to use a non-beta version of the Nullsoft Installation System
for the final OpenVPN 2.0 release.
So, here's a patch against openvpn.nsi from OpenVPN
On Sun, 13 Feb 2005, James Yonan wrote:
On Sun, 13 Feb 2005, Mathias Sundman wrote:
When uninstalling OpenVPN, the installation package leaves a semicolon at
the end of the path.
A bit ugly -- maybe we should fix RemoveFromPath?
Yes, you're right. Attached is a fixed versi
nio for reporting this problem.
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
OpenVPN GUI for Windows XNO HTML/RTF in e-mail
http://openvpn.se/ \ NO Word docs in e-mail
On Sat, 22 Jan 2005, James Yonan wrote:
On Fri, 21 Jan 2005, Mathias Sundman wrote:
On Fri, 21 Jan 2005, Mathias Sundman wrote:
Just because someone reported about problems with route additions via IPAPI
when using PPP or PPPoE adapters the other day, one of my users reported the
same
On Fri, 21 Jan 2005, Mathias Sundman wrote:
Just because someone reported about problems with route additions via IPAPI
when using PPP or PPPoE adapters the other day, one of my users reported the
same problem to me today. I'll try to reproduce it on my computer later to
night, so we ca
def1
parameter.
2) Also specify the gateway parameter on the route delete cmd. This causes
route.exe only to delete the correct route.
--
_
Mathias Sundman (^) ASCII Ribbon Campaign
OpenVPN GUI for Windows X
20 02:03:37 2005 Cannot load certificate "SUBJ:Mathias Sundman"
from Microsoft Certificate Store: error:C5064064:microsoft
cryptoapi:CertOpenSystemStore:The parameter is incorrect.
--
_________
Mathias Sundman (^) ASCII Ribbon
On Thu, 16 Dec 2004, sam wun wrote:
Hi,
Is there any instruction about how to compile OpenVPN in windows?
I m looking for which compiler to use VC++ or Borland C++? and any options
have to be added to the EDI file, etc?
Why not use MinGW? See the INSTALL-win32 file for more info on how to
b
ompt now, it is also not
possible for the GUI to terminate the connection as OpenVPN is not
checking the exit event while waiting for user input from stdin.
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
OpenVPN
On Wed, 17 Nov 2004, Paul Iadonisi wrote:
> While working with various setups, I felt there might be a better way
> to start up the VPN(s) with a little more granularity. In fact, at
> least in the case of Fedora Core (2 and 3 in my case), I thought it
> might be a good idea to integrate it i
On Mon, 15 Nov 2004 satind...@in.safenet-inc.com wrote:
I was just trying out SSL connection set-up between openvpn client with
Apache server (openSSL). But it is failing.
Is there any way to do so? Can I get openvpn client to successfully create
ssl connection with Apache server?
What code chan
rhead...
--
_
Mathias Sundman (^) ASCII Ribbon Campaign
NILINGS ABXNO HTML/RTF in e-mail
Tel: +46-(0)8-666 32 28 / \ NO Word docs in e-mail
On Mon, 8 Nov 2004, Mathias Sundman wrote:
I got an email from an OpenVPN GUI user today saying that it didn't work
together with passphrase protected keys in the MS certificate store.
I had no problem reproducing it. I'm using OpenVPN 2.0-beta16, and all
version of OpenVPN GUI fro
break;
default:// for messages that we don't deal with
return DefWindowProc (hwnd, message, wParam, lParam);
}
return 0;
}
Best Regards,
Mathias
--
_
Mathias Sundman (^) ASCII R
le-scope or removing 'static' from the prototype and definition of
get_netshid()
fixed it though. Anybody else seen this?
I had no problem building it with gcc 3.2.3 under MinGW.
I'm using:
WinXP SP2
MinGW-3.1.0-1
MSYS-1.0.10
--
__________
lve the problem.
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
NILINGS ABXNO HTML/RTF in e-mail
Tel: +46-(0)8-666 32 28 / \ NO Word docs in e-mail
7;t thought of is of cource welcome...
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
OpenVPN GUI for Windows XNO HTML/RTF in e-mail
http://www.nilings.se/openvpn/ \ NO Word docs in e-mail
tries to connect now?
Did she make any changes when it stopped working? Any new patches applied?
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
NILINGS ABXNO HTML/RTF in e-mail
Tel: +46-(0)8-666 32 28 /
On Thu, 4 Nov 2004, James Yonan wrote:
On Wed, 3 Nov 2004, Mathias Sundman wrote:
Okay, I've finished my event signals patch, which adds events for SIGUSR1,
SIGUSR2 and SIGHUP.
If --service is used, it still creates the exit_event just like before,
but it also creates the new events wit
As OpenVPN gets deployed at larger and larger corporations as a
roadwarrior VPN server, I think it becomes more and more important that
it's possible to change as much of the server configuration as possible
without having to restart the server and causing all users to be
disconnected.
One th
t does not break compatibility with existing software.
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
OpenVPN GUI for Windows XNO HTML/RTF in e-mail
http://www.nilings.se/openvpn/ \ NO Word docs
On Tue, 2 Nov 2004, Mathias Sundman wrote:
James,
I think we made a little misstake with the "auto-find free TAP device"
feature.
In OpenVPN GUI >= beta20 I close the connections and restart them after a
suspend. If multiple connections were running this means that they wi
ntil later.
Both processes seemed to find the same interface free, but later one of
them of cource failed to open it.
/Mathias
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
OpenVPN GUI for Windows XNO
On Mon, 1 Nov 2004, Mathias Sundman wrote:
I'm working on a patch to add events for the other unix signals. I want
this because I want the GUI to have the same possibility to send openvpn
signals like you have in unix or when running from the console.
While working on this I think I e
On Sun, 31 Oct 2004, Mathias Sundman wrote:
Hi James and everyone else,
I'm working on a patch to add events for the other unix signals. I want this
because I want the GUI to have the same possibility to send openvpn signals
like you have in unix or when running from the console.
er and OpenVPN GUI, but maybe it's
the only right way to go...
Hope I havn't missunderstood everything and just waisted your time...
--
_____
Mathias Sundman (^) ASCII Ribbon Campaign
OpenVPN GUI for Windows
7;s technically possible ?
Thanks a lot !
Yes, it should be possible, but I don't know of any such project. The
biggest challange will probably be to port the TAP driver.
The userspace openvpn application should be fairly easy to port.
--
_________
or beyond 2.0?
The cryptoapi patch has been applied in 2.0-beta14 and is avalible here:
http://openvpn.sourceforge.net/beta/
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
OpenVPN GUI for Windows X
think this should be fixed in OpenVPN, or should I handle it in the
GUI, by simply sending an extra CR for the next prompt?
--
_
Mathias Sundman (^) ASCII Ribbon Campaign
OpenVPN GUI for Windows XNO HTML/RTF
lients using a specific O/S or do you want to support all O/S
supported by OpenVPN?
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
OpenVPN GUI for Windows XNO HTML/RTF in e-mail
http://www.nilings.se/openvpn/ \ NO Word docs in e-mail
is available here:
http://www.nilings.se/openvpn/files/install_packages/openvpn-gui.nsi
--
_____________
Mathias Sundman (^) ASCII Ribbon Campaign
OpenVPN GUI for Windows XNO HTML/RTF in e-mail
http://www.nilings.se/openvpn/ \ NO Word docs in e-mail
, while 2.0 defaults to key-method 2.
I found it documented in the following two places:
The 2.0 Release Notes. [1]
The Compatibility Notes. [2]
[1] http://openvpn.sourceforge.net/20notes.html
[2] http://openvpn.sourceforge.net/compat.html
--
_____
Well, djgpp isn't msys/mingw :-)
Try to remove djgpp from your system path, or just make sure msys and
mingw is listed BEFORE djgpp.
--
_____
Mathias Sundman (^) ASCII Ribbon Campaign
NILINGS ABXNO HTM
m a command prompt window (not msys bash), cd to top-level openssl
directory.
(5) Type "ms\mw" to start build.
(6) When build is finished, the .DLLs will be in the top level openssl
directory and the .a and .exe files will be in the "out" subdirectory.
--
__________
On Thu, 14 Oct 2004, James Yonan wrote:
On Thu, 14 Oct 2004, Mathias Sundman wrote:
I have a little feature request.
I use TAP and bridging in many roadwarrior configurations.
I would really like to see what IP address that has been assigned to
which client in the --status file.
There
file? One CLIENT LIST line and multi
ROUTING TABLE lines?
--
_
Mathias Sundman (^) ASCII Ribbon Campaign
OpenVPN GUI for Windows XNO HTML/RTF in e-mail
http://www.nilings.se/openvpn/ \ NO Word docs
On Tue, 5 Oct 2004, Mathias Sundman wrote:
I was going to ask for a feature yesterday, but though I'd write it myself
instead of just asking for others todo things for me :-)
I have about 15 OpenVPN configs on my Windows machine, but I only use 2-3
simulatainously. But, as I need be ab
ny new features...
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
OpenVPN GUI for Windows XNO HTML/RTF in e-mail
http://www.nilings.se/openvpn/ \ NO Word docs in e-mail
the features and commands which will
run as SYSTEM.
Didier
James Yonan wrote:
On Fri, 1 Oct 2004, Mathias Sundman wrote:
Didier announced a first release of an improved version of the OpenVPN
Service Wrapper earlier this week. The goal with this is to allow a non
admin user on Windows to sta
ave static configuration
done on the TAP devices, you need to use dev-node to specify which device
to use anyway, so I don't think this patch should brake anything.
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
pe between this socket and the openvpn process. The GUI can then connect
to this socket to recieve the log in real-time, and can monitor this for
the passphrase prompt itself.
Comments or suggestions on other solutions are welcome.
--
_______
ry reply, right?)
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
NILINGS ABXNO HTML/RTF in e-mail
Tel: +46-(0)8-666 32 28 / \ NO Word docs in e-mail
ase string, but that can only contain
ASCII chars, right?
--
_____
Mathias Sundman (^) ASCII Ribbon Campaign
NILINGS ABXNO HTML/RTF in e-mail
Tel: +46-(0)8-666 32 28 / \ NO Word docs in e-mail
not get been assigned any string?
--
_
Mathias Sundman (^) ASCII Ribbon Campaign
NILINGS ABXNO HTML/RTF in e-mail
Tel: +46-(0)8-666 32 28 / \ NO Word docs in e-mail
On Sun, 8 Aug 2004, James Yonan wrote:
Mathias Sundman said:
--- forward-orig.c Fri Jul 30 22:08:22 2004
+++ forward.c Sun Aug 8 09:48:21 2004
@@ -243,6 +243,7 @@
update_time ();
event_timeout_clear (&c->c2.route_wakeup);
event_timeout_clear
GUI after routes have been added?
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
NILINGS ABXNO HTML/RTF in e-mail
Tel: +46-(0)8-666 32 28 / \ NO Word docs in e-mail
On Fri, 23 Jul 2004, Mathias Sundman wrote:
OpenVPN (2.0-beta7) does not exit when the exit_event is signaled if a
passphrase protected key is used, and openvpn in waiting for the password
from the console.
This is a problem now that I pass the passphrase from my gui as a cmd-line
option. I
le to have openvpn exit when the exit_event is signaled even
if it is in getpass(), or do I have to come up with a way to tell openvpn
not to ask for the passphrase from the console at all?
--
_____
Mathias Sundman (^) AS
On Tue, 13 Jul 2004, Mathias Sundman wrote:
I'd like to implement a way to hand over the private key passphrase to
openvpn, to be able to add this feature to my GUI.
We have discussed that this could/should be done via the management interface
that we've discussed alot. However, I
interface when we have that ready.
James, if I create a patch that accepts the passphrase as an cmd-line
option, will you apply it then?
Comments?
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
NILINGS AB
file from your PEM fiels with:
openssl pkcs12 -export -inkey $1.key -in $1.crt -certfile ca.crt \
-out $1.p12
Enjoy!
--
_
Mathias Sundman (^) ASCII Ribbon Campaign
SunGard Availability Services XNO HTML/RTF in e
On Fri, 9 Jul 2004, Denis Vlasenko wrote:
On Friday 09 July 2004 00:35, Mathias Sundman wrote:
What I am trying to say? I am very happy that you guys are actively
working on openvpn. Really.
Just please do not OVERdesign it.
Maybe it's better to try to port daemontools to Windows
an
on the other hand tends to want automatic graphical
installation packages and a nice gui to click on, and get afraid if they
need to edit a textfile! So we need to keep the whole chain from
installation to operating really simple.
Do you think we can achive this using deamon tools?
--
____
27;t
need this.
Comments?
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
NILINGS ABXNO HTML/RTF in e-mail
Tel: +46-(0)8-666 32 28 / \ NO Word docs in e-mail
On Wed, 7 Jul 2004, James Yonan wrote:
On Tuesday 06 July 2004 16:58, Mathias Sundman wrote:
Some more things to consider...
1. On Windows, if the the service wrapper has started some openvpn
processes before our gui agent is started, how should find out about
those processes?
I can think of
e wrapper in a wrong direction...
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
NILINGS ABXNO HTML/RTF in e-mail
Tel: +46-(0)8-666 32 28 / \ NO Word docs in e-mail
starts the openvpn process, so the user don't have to bother setting the
correct management option in his config-files.
This interface to the openvpn deamon will be the same regardless of the
platform.
--
_____________
Mathias Sundman
so we can check the status of the connection from a gui, but that's
another issue.
--
_____________
Mathias Sundman (^) ASCII Ribbon Campaign
NILINGS ABXNO HTML/RTF in e-mail
Tel: +46-(0)8-666 32
On Mon, 5 Jul 2004, James Yonan wrote:
On Monday 05 July 2004 14:49, Mathias Sundman wrote:
On Sun, 4 Jul 2004, Jan Kiszka wrote:
I would like to have some mechanism to fork an openvpn instance and let
the new process use a specific configuration file. This would allow to
start only certain
ui client could tell the service wrapper to start new openvpn
processes when we want.
If it's not a windows specific problem, then I suppost it's best to add
the functionallity in the openvpn binary so we get the portability.
--
________
all config-files it has found.
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
NILINGS ABXNO HTML/RTF in e-mail
Tel: +46-(0)8-666 32 28 / \ NO Word docs in e-mail
ocesses with a specific config-file.
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
NILINGS ABXNO HTML/RTF in e-mail
Tel: +46-(0)8-666 32 28 / \ NO Word docs in e-mail
tarted, it will
notify the user of this and terminate.
It is available for download from here:
http://www.nilings.se/openvpn
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
NILINGS ABXNO HTML/RT
tarted by the service
wrapper perhaps), and check the current state.
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
NILINGS ABXNO HTML/RTF in e-mail
Tel: +46-(0)8-666 32 28 / \ NO Word docs in e-mail
ral states during the init is ofcource that it will
allow me to set timeout values for every step and report to the user at
what step the connection failed.
I suppose it will be best if the gui client query the server for the
current state.
/Mathias
--
_
ultiple tunnels
simultaneously from the the menu, and monitor if the process ends before
it is manually disconnected.
My version is written in pure Win32 C code, but if you want to rewrite it
using C# you are ofcource welcome...
Best Regards Mathias
--
_________
w to
communicate with OpenVPN to check the status.
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
NILINGS ABXNO HTML/RTF in e-mail
Tel: +46-(0)8-666 32 28 / \ NO Word docs in e-mail
d be appreciated too.
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
NILINGS ABXNO HTML/RTF in e-mail
Tel: +46-(0)8-666 32 28 / \ NO Word docs in e-mail
d recieve error messages?
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
NILINGS ABXNO HTML/RTF in e-mail
Tel: +46-(0)8-666 32 28 / \ NO Word docs in e-mail
l connected to the same hub/switch.
--
_________
Mathias Sundman (^) ASCII Ribbon Campaign
NILINGS ABXNO HTML/RTF in e-mail
Tel: +46-(0)8-666 32 28 / \ NO Word docs in e-mail
83 matches
Mail list logo
