Text only | Text with Images

OPNsense Forum

English Forums => 24.7, 24.10 Legacy Series => Topic started by: GreenMatter on July 25, 2024, 07:12:43 PM

Title: Openvpn Server interface: dco_set_ifmode: failed
Post by: GreenMatter on July 25, 2024, 07:12:43 PM

After upgrading to 24.7 (for test purposes  :D ) openvpn UDP server (legacy) doesn't work anymore and throws following errors:
Code Select
2024-07-25T19:06:21 Warning openvpn_server9 dco_set_ifmode: failed to set ifmode=00008002: Invalid argument (errno=22)
2024-07-25T19:06:21 Warning openvpn_server9 Failed to create interface ovpns9 (SIOCSIFNAME): File exists (errno=17)


Ho to fix it?
Title: Re: Openvpn Server interface: dco_set_ifmode: failed
Post by: franco on July 25, 2024, 07:29:06 PM
Meh, OpenVPN tries to kick it into DCO mode... Can you add this to advanced settings and try again?

disable-dco


Cheers,
Franco
Title: Re: Openvpn Server interface: dco_set_ifmode: failed
Post by: GreenMatter on July 25, 2024, 07:49:35 PM
Quote from: franco on July 25, 2024, 07:29:06 PM
disable-dco
Yes, that restored UDP server...
But how to change config to use DCO?
Title: Re: Openvpn Server interface: dco_set_ifmode: failed
Post by: franco on July 25, 2024, 07:54:37 PM
Not going to be in legacy client/server, sorry.


Cheers,
Franco
Title: Re: Openvpn Server interface: dco_set_ifmode: failed
Post by: GreenMatter on July 25, 2024, 07:56:40 PM
Quote from: franco on July 25, 2024, 07:54:37 PM
Not going to be in legacy client/server, sorry.
Thus I need to migrate to "instances"?
Title: Re: Openvpn Server interface: dco_set_ifmode: failed
Post by: franco on July 25, 2024, 08:03:00 PM
Correct. For better or worse the legacy section is considered "feature complete" and this consistency fix was unfortunately missed.

https://github.com/opnsense/core/commit/89135cdc

In any case thanks for the report. I have a few things I'm going to hotfix until tomorrow.


Cheers,
Franco
Title: Re: Openvpn Server interface: dco_set_ifmode: failed
Post by: GreenMatter on July 25, 2024, 08:16:35 PM
Thanks, but what keeps stopping me from migration is missing TLS authentication (TLS Shared Key) in instances config.
Will it be added there?
Title: Re: Openvpn Server interface: dco_set_ifmode: failed
Post by: franco on July 25, 2024, 08:21:09 PM
It would be best to raise a feature request for instances as long as the feature is not a deprecated OpenVPN option.


Cheers,
Franco
Title: Re: Openvpn Server interface: dco_set_ifmode: failed
Post by: GreenMatter on July 25, 2024, 11:00:02 PM
One more thing.
Openvpn TCP server (legacy) was fully running.
But UDP server (legacy) was running but there was no connectivity. I mean netcat was showing replies from hosts on various ports but nothing could go through browser.
I gave up and restored 24.1.10...
Title: Re: Openvpn Server interface: dco_set_ifmode: failed
Post by: hansen97124 on July 26, 2024, 02:14:44 AM
Quote from: franco on July 25, 2024, 07:29:06 PM
Meh, OpenVPN tries to kick it into DCO mode... Can you add this to advanced settings and try again?

disable-dco

This also worked for me.  Thanks for posting.



Text only | Text with Images