Hi, On Wed, Apr 29, 2020 at 09:03:20AM +0200, free...@tango.lu wrote: > Ok so after a bit of research and finding half baked articles such as: > https://superuser.com/questions/1283125/proper-configuration-for-quagga-ospf-on-an-openvpn-network > > Which makes me think OSPF is only possible with the old tap interfaces, > what the OpenVPN dev team even want to remove in the future, why is > there no proper support of OSPF in routed tun tunnels?
Not sure where that rumor is coming from. No removal of TAP device
support is planned.
OSPF over tun works fine *if* you do p2p tun.
It does not work if you have a point-to-multipoint server involved
("--server") because that one has an internal routing table which is
not synchronized to the kernel side. So OSPF might speak through
the tunnel, but the routes exchanged are not learned by OpenVPN,
and so packets can not flow.
> Is there no demand of using routing protocols inside VPN tunnels? Any
> plans for the future to have something like quagga built into OpenVPN to
> take care of this?
Antonio has recently started a discussion about "can we not synchronize
the OpenVPN iroute table with the kernel routing table". This would
enable BGP/OSPF/... on top of openvpn tunnels, but it is not trivially
done. Like, quite *very* difficult to get right.
gert
--
"If was one thing all people took for granted, was conviction that if you
feed honest figures into a computer, honest figures come out. Never doubted
it myself till I met a computer with a sense of humor."
Robert A. Heinlein, The Moon is a Harsh Mistress
Gert Doering - Munich, Germany g...@greenie.muc.de
signature.asc
Description: PGP signature
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
