Great ideas! Thank you Pierre! -----Original Message----- From: BARDOU Pierre [mailto:bardo...@mipih.fr] Sent: Monday, July 18, 2016 8:51 AM To: Difan Zhao <difan.z...@pason.com> Cc: misc@openbsd.org Subject: RE: ratble and rdomain support on dhcpd and openvpn
Hi, OpenVPN does not support rdomains and probably never will, as it is OpenBSD-specific. I had some success by running it in the default rdomain an then dispatching the clients in different rdomains via PF. But this was for server mode. Maybe you can do something like that for the client, like running it in the default rdomain and make PF rules in your rdomain 200 to send relevant packets to the VPN. You might also use "route -T 200 exec openvpn ..." and a script, which will set the rdomain on connection. Look at the --up parameter of the OpenVPN man page. -- Cordialement, Pierre BARDOU -----Message d'origine----- De : Difan Zhao [mailto:difan.z...@pason.com] Envoyé : vendredi 15 juillet 2016 21:35 À : Chris Cappuccio <ch...@nmedia.net> Cc : Pierre Emeriaud <petrus.lt+open...@gmail.com>; misc@openbsd.org Objet : Re: ratble and rdomain support on dhcpd and openvpn Thank you sir! So I probably just stick with my hacking approach and wait for the 6.0. I see that will come in November so not too much waiting. So any idea how the openvpn might start to support rtable or rdomain? Thanks, Difan -----Original Message----- From: Chris Cappuccio [mailto:ch...@nmedia.net] Sent: Friday, July 15, 2016 11:07 AM To: Difan Zhao <difan.z...@pason.com> Cc: Pierre Emeriaud <petrus.lt+open...@gmail.com>; misc@openbsd.org Subject: Re: ratble and rdomain support on dhcpd and openvpn Difan Zhao [difan.z...@pason.com] wrote: > Hi Pierre, > > I just upgraded the soekris box to openbsd 5.9 however I am still > having the problem setting the rtable... > This requires OpenBSD 6.0 which is not yet released. You can use snapshots at http//ftp.openbsd.org/pub/OpenBSD/snapshots/amd64/ to install the beta code.
