On Wed, Jun 18, 2008 at 10:32:13AM -0400, Andrew Moise wrote: > I like that a failure of learn-address prevenst the connection from > working, since I depend on learn-address to set up filtering that's > needed for some VPN connections to be firewalled properly, but I would > prefer if the connection would be closed properly rather than remaining > in what looks like an indeterminate (and not immediately straightforward > to debug) state.
Hi, I agree with you in the 'erratic' behavior, but it's actually documented in the man page: 'if the script returns a failure code (non-zero), OpenVPN will reject the address and will not modify its internal routing table.' I'm tagging it 'upstream' and 'wishlist', and letting upstream decide on it. Thanks, Alberto -- Alberto Gonzalez Iniesta | Formación, consultoría y soporte técnico agi@(inittab.org|debian.org)| en GNU/Linux y software libre Encrypted mail preferred | http://inittab.com Key fingerprint = 9782 04E7 2B75 405C F5E9 0C81 C514 AF8E 4BA4 01C3 -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
