Tested this with various combinations of --port, --bind, --lport,
--local <v4|v6>, etc. - a fascinating world of interesting effects.
I've fixed a small oversight in the commit message - the line needs to
read
Summary: socket bind is now only done if one of these is set
- --lport <port> with <port> not "0"
(with "--lport", as "--port" never leads to an automatic bind)
Also added a reference to GH schwabe/ics-openvpn#1794 where half the
problems go away if "lport 0" is removed from the config - which, in
these cases, translates to "is not enabling --bind" (the real issue
is "any" bind AF vs. getaddrinfo(), but not binding at all helps).
Patch has been applied to the master branch.
commit c91948a0e03f0ad03e7fdde59ed9fce87ba00885
Author: Gert Doering
Date: Mon Mar 24 19:27:26 2025 +0100
Make 'lport 0' no longer sufficient to do '--bind'.
Signed-off-by: Gert Doering <[email protected]>
Acked-by: Arne Schwabe <[email protected]>
Message-Id: <[email protected]>
URL:
https://www.mail-archive.com/[email protected]/msg31222.html
Signed-off-by: Gert Doering <[email protected]>
--
kind regards,
Gert Doering
_______________________________________________
Openvpn-devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openvpn-devel
