[SOLVED] OpenVPN remote network

Started by GaardenZwerch, August 16, 2018, 03:41:22 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
August 16, 2018, 03:41:22 PM Last Edit: August 17, 2018, 09:46:09 AM by GaardenZwerch
Hi,

openvpn clients used to accept x.y.z.t/32 in "IPv4 Remote Network" if there is a single host that needs to go through a tunnel in 18.1,
now (18.7.1) they complain:
"The field 'IPv4 Remote Network' must contain only valid ipv4 CIDR range(s) separated by commas."

I rely on this a lot, for reasons that I have no influence on. Can this be like it was before, so /32 is valid?

Thanks and regards,
Frank


August 16, 2018, 03:53:09 PM #1
Hi Frank,

Can you give an example of such a tunnel network?


Thanks,
Franco
August 16, 2018, 03:59:56 PM #2
Hi Franco,

I need to access 172.27.5.3/32 (just this one host) thru a given opnvpn tunnel. This doesn't work anymore since upgrading to 18.7.1
When I put 172.27.5.0/29 in the field, it works (for now) but it is not really what I want.

Thanks

Frank
August 16, 2018, 06:18:54 PM #3
Hi Frank,

Thanks, lifted the restriction and found what looks like a PHP oddity that evaluates bitwise operators after logic operators...

https://github.com/opnsense/core/commit/4d664bc3

You can install the patch via:

# opnsense-patch 4d664bc3


Cheers,
Franco
August 17, 2018, 09:45:44 AM #4
Thanks a lot,
works like a charm.
August 17, 2018, 12:11:36 PM #5
Ok, thanks, will be shipped in 18.7.2. Sorry for the trouble.
Print
Go Up Pages1
User actions