On Monday, 12 June 2017 3:47:24 PM AEST Steven Haigh wrote:
> Hi all,
>
> I'm trying to get renegotiation working with openvpn 2.4.2 using a YubiKey.
>
> I have had no issues creating a auth-user-pass-verify script to validate the
> password provided by the Yubikey and this works well.
>
> When
Hi,
On Sun, Jun 11, 2017 at 05:04:26PM -0700, Daryl Morse wrote:
> With /proc/sys/net/ipv6/conf/eth0/accept_ra=2, it???s possible to ping
> external addresses from the server.
>
> How do I make that setting persist. I used systemctl and it clears upon
> rebooting.
/etc/sysctl.conf
> After res
Hi all,
I'm trying to get renegotiation working with openvpn 2.4.2 using a YubiKey.
I have had no issues creating a auth-user-pass-verify script to validate the
password provided by the Yubikey and this works well.
When renegotiation happens, I notice that the password line in the file
provide
Here are the logs from the client and server. I haven't made any changes to the
config files.
Sun Jun 11 19:14:41 2017 OpenVPN 2.4.2 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on May 11 2017
Sun Jun 11 19:14:41 2017 Windows version 6.2 (Windows 8 or greater) 64bit
Sun Ju
Further to that, I restarted the server and tried again.
I can ping the server from the client using both ipv4 and ipv6. I can only ping
the client from the server using ipv4, but not with ipv6. This is somewhat
strange because usually it's been possible to ping both ways using either
protocol
With /proc/sys/net/ipv6/conf/eth0/accept_ra=2, it’s possible to ping external
addresses from the server.
How do I make that setting persist. I used systemctl and it clears upon
rebooting.
After restarting and reapplying the setting, it’s possible to ping the client
and server both ways u
On Sat, 10 Jun 2017 19:34:27 +0200
Gert Doering wrote:
> > It's a router sollicitation, it pops up in the remote tun device.
> > The tun device comes up and the up script for disabling router
> > sollicitations is invoked afterwards (which is obvious because
> > disabling router sollicitations is
Hi,
On Sun, Jun 11, 2017 at 08:49:26PM +0800, Antonio Quartulli wrote:
> oh great! I thought openvpn would complain about the interface name being
> already in use in this case. awesome :)
We have extra code to detect "oh, the interface existed beforehand,
so let's not destroy it on program end
On Sun, Jun 11, 2017 at 12:41 PM, daryl_mo...@telus.net <
daryl_mo...@telus.net> wrote:
> Here is some info for you.
>
> root@ubuntu-vpn:~# more /proc/sys/net/ipv6/conf/default/accept_ra
> 1
> root@ubuntu-vpn:~# more /proc/sys/net/ipv6/conf/eth0/accept_ra
> 1
>
If ipv6 forwarding is enabled you
Here is some info for you.
root@ubuntu-vpn:~# more /proc/sys/net/ipv6/conf/default/accept_ra
1
root@ubuntu-vpn:~# more /proc/sys/net/ipv6/conf/eth0/accept_ra
1
root@ubuntu-vpn:~# ip -6 -d route show
unicast 2001:x:y:e800::1376 dev eth0 proto kernel scope global metric 256
pref medium
unicast
> On 11 Jun 2017, at 13:55, Gert Doering wrote:
>
> Hi,
>
> On Sun, Jun 11, 2017 at 08:00:13AM +0800, Antonio Quartulli wrote:
>> The only problem is that I believe you can???t tell OpenVPN to keep the
>> interface down after initialisation.
>
> openvpn --mktun tun1
> sysctl ...
> openvpn --d
11 matches
Mail list logo
