On 06/04/17 15:20, David Sommerseth wrote:
> On 06/04/17 15:09, Jan Just Keijser wrote:
>> On 06/04/17 08:28, saato...@keemail.me wrote:
>>> I was able to confirm my suspicion, if I reuse the random ports (which
>>> OpenVPN chose with `nobind`) with `lport`, I'm reassigned the previous
>>> IP addre
On 04/04/17 13:34, David Sommerseth wrote:
> On 04/04/17 11:50, Илья Шипицин wrote:
>> hello,
>>
>> you did not use "topology", so, I guess "net30" is used by default.
>> if so, you spent 4 addresses per connection.
>
> Yes --topology net30 is the default. Unfortunately, we cannot easily
> change
On 06/04/17 15:09, Jan Just Keijser wrote:
> On 06/04/17 08:28, saato...@keemail.me wrote:
>> I was able to confirm my suspicion, if I reuse the random ports (which
>> OpenVPN chose with `nobind`) with `lport`, I'm reassigned the previous
>> IP addresses. This effectively resolves the IP pool exhau
On 06/04/17 08:28, saato...@keemail.me wrote:
I was able to confirm my suspicion, if I reuse the random ports (which
OpenVPN chose with `nobind`) with `lport`, I'm reassigned the previous
IP addresses. This effectively resolves the IP pool exhaustion.
However, I still haven't found a way to id
I was able to confirm my suspicion, if I reuse the random ports (which OpenVPN
chose with `nobind`) with `lport`, I'm reassigned the previous IP addresses.
This effectively resolves the IP pool exhaustion.
However, I still haven't found a way to identify the port of the OpenVPN client
process. I
It seems to me that without `nobind`, I obviously re-use the same local port on
the client, which is reassigned the same IP address (if I include the
explicit-exit-notify).This does not work with `nobind` and I believe that has
to do with the random port for each OpenVPN process. Now, my idea wa
Hi,
On 04/04/17 16:09, saato...@keemail.me wrote:
Hello!
I'll have to look into the topology topic. But it seems reasonable to
me, to print a warning about the net30 topology.
The explicit-exit-notify is a very good point! I missed that in my
client configuration. It appears to be working, i
2017-04-04 19:09 GMT+05:00 :
> Hello!
> I'll have to look into the topology topic. But it seems reasonable to me,
> to print a warning about the net30 topology.
>
> The explicit-exit-notify is a very good point! I missed that in my client
> configuration. It appears to be working, if I start one p
On Tue, Apr 4, 2017 at 10:09 AM, wrote:
> Hello!
> I'll have to look into the topology topic. But it seems reasonable to me,
> to print a warning about the net30 topology.
>
> The explicit-exit-notify is a very good point! I missed that in my client
> configuration. It appears to be working, if I
Hello!I'll have to look into the topology topic. But it seems reasonable to me,
to print a warning about the net30 topology.
The explicit-exit-notify is a very good point! I missed that in my client
configuration. It appears to be working, if I start one process after the
other. However, during
Hi,
On 04/04/17 11:39, saato...@keemail.me wrote:
I'm performing a number of tests with OpenVPN, where amongst other
things, I connect and disconnect with the same client certificate and
slightly different client config settings over and over (>75 times,
withing a short time).
I realised tha
2017-04-04 15:34 GMT+05:00 David Sommerseth <
open...@sf.lists.topphemmelig.net>:
> On 04/04/17 11:50, Илья Шипицин wrote:
> > hello,
> >
> > you did not use "topology", so, I guess "net30" is used by default.
> > if so, you spent 4 addresses per connection.
>
> Yes --topology net30 is the default
On 04/04/17 11:50, Илья Шипицин wrote:
> hello,
>
> you did not use "topology", so, I guess "net30" is used by default.
> if so, you spent 4 addresses per connection.
Yes --topology net30 is the default. Unfortunately, we cannot easily
change that without breaking many setups.
> if you are not
hello,
you did not use "topology", so, I guess "net30" is used by default.
if so, you spent 4 addresses per connection.
if you are not using too old clients (I guess, released 10 years ago), you
can switch to "topology subnet"
2017-04-04 14:39 GMT+05:00 :
> I'm performing a number of tests with
I'm performing a number of tests with OpenVPN, where amongst other things, I
connect and disconnect with the same client certificate and slightly different
client config settings over and over (>75 times, withing a short time).
I realised that I exhaust my servers IP pool pretty quickly. Even wai
15 matches
Mail list logo
