[Openvpn-users] weird local peer ip routing on osx

Wed, 25 Oct 2017 14:46:25 -0700 

Hi,

I have a 2.3.6 server with dev tun and default topology (net30?). Server is 
configured as "server 192.168.13.0 255.255.255.0". I have noticed a weird 
routing on osx where the traffic
for a local peer ip gets routed to the server and back:

osx # /sbin/ifconfig utun1
utun1: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1500
        inet 192.168.13.237 --> 192.168.13.238 netmask 0xffffffff       nd6 
options=201<PERFORMNUD,DAD>

osx # traceroute -n 192.168.13.237
traceroute to 192.168.13.237 (192.168.13.237), 64 hops max, 52 byte packets
1  192.168.13.1  38.295 ms  37.184 ms  37.794 ms
2  192.168.13.237  74.515 ms  71.977 ms  70.691 ms

osx # netstat -rn | grep ^192.168.13
192.168.13         utun1              USc             1        4   utun1
192.168.13.1/32    192.168.13.238     UGSc            0        0   utun1
192.168.13.237     utun1              UHS             1        0   utun1

I have tried with openvpn from homebrew, viscosity and tunnelblick
and they all behave the same. No matter what I do as soon as there is a
route on the utun interface for the peer ip the traffic gets routed to
the server internal IP no matter what. Linux client with the same config is
behaving correctly and goes straight to the peer ip:

lnx # ip a s tun0
6: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc
pfifo_fast state  UNKNOWN qlen 100
  link/none     inet 192.168.13.33 peer 192.168.13.34/32 scope global tun0
     valid_lft forever preferred_lft forever
lnx # ip r s | grep ^192.168.13
192.168.13.0/24 via 192.168.13.34 dev tun0 192.168.13.1 via 192.168.13.34 dev 
tun0 192.168.13.34 dev tun0  proto kernel  scope link src 192.168.13.33 lnx # 
traceroute -n 192.168.13.33
traceroute to 192.168.13.33 (192.168.13.33), 30 hops max, 60 byte packets
1  192.168.13.33  0.066 ms  0.014 ms  0.012 ms

any ideas why is that happening and how can I prevent it, i.e. replicate the 
linux behaviour?

Thanks,
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users

Reply via email to