Hi, I used a tun-ipv6 mode between dual stack server and IPv4-only clients,
making clients to get a IPv6 address and DNS within IPv4 tunnel.
But I found clients could not pull a IPv6 DNS from server. What configuration
should I use on server?
"dhcp6-option dns 2001:da8:4860:4860::8888" unworked.
Or any other method can push IPv6 DNS to clients?
Here is my server config:
local 202.x.x.x (v4 public)
port 9185
proto udp
dev tun
tun-ipv6
push tun-ipv6
ifconfig-ipv6 2001:da8:abcd::1
ca /etc/openvpn/easy-rsa/keys/ca.crt
cert /etc/openvpn/easy-rsa/keys/server.crt
key /etc/openvpn/easy-rsa/keys/server.key # This file should be kept secret
auth-user-pass-verify /etc/openvpn/checkpsw.sh via-env
client-cert-not-required
username-as-common-name
dh /etc/openvpn/easy-rsa/keys/dh1024.pem
topology subnet
server 10.0.0.0 255.255.0.0
server-ipv6 2001:da8:abcd::/64
push "route-ipv6 2000::/3"
push "dhcp6-option DNS 2001:da8:4860:4860::8888"
duplicate-cn
keepalive 3 20
persist-key
persist-tun
status openvpn-status.log
log-append /var/log/openvpn/openvpn.log
verb 3
mssfix 1200
script-security 3
client-connect /etc/openvpn/client-con-log
client-disconnect /etc/openvpn/client-discon-log
crl-verify /etc/openvpn/easy-rsa/keys/crl.pem
=====
Thanks
2016-05-16
------------------------------------------------------------------------------
Mobile security can be enabling, not merely restricting. Employees who
bring their own devices (BYOD) to work are irked by the imposition of MDM
restrictions. Mobile Device Manager Plus allows you to control only the
apps on BYO-devices by containerizing them, leaving personal data untouched!
https://ad.doubleclick.net/ddm/clk/304595813;131938128;j
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
