Hi, On Fri, Apr 08, 2022 at 01:18:36PM +0000, dashdruid wrote: > Yes I understand but having some patch for it which can do this would be > extremely useful.
OpenVPN does not know or care about IP addresses in L2 networks. A client
might not even have an IPv4 address - for all we care, it could be speaking
IPX or IPv6 only.
> I know about arpwatch and I use it on many networks but I working on a
> solution which parses the log files from a central openvpn tap server where
> multiple l2 networks are bridged together to track where hosts are and avoid
> ip collisions.
>
> Since all of these bridged networks use a different certificate like client1
> client2 client3 it's easy to see from the logs where does a host show up (at
> least it's mac address).
>
> For example laptop A can register on network A B C which are all in 1 layer2
> subnet and this info is updated in the db based on the openvpn logs.
Yes, OpenVPN knows about MAC addresses and will tell you.
Which IPv4 address, if any, is used by that MAC address needs to be learned
from other means - we're not going to build arpwatch into OpenVPN.
Especially as running arpwatch on the "server side" of the TAP (run
one arpwatch instance on every openvpn server "A B C") is really easy to
do.
gert
--
"If was one thing all people took for granted, was conviction that if you
feed honest figures into a computer, honest figures come out. Never doubted
it myself till I met a computer with a sense of humor."
Robert A. Heinlein, The Moon is a Harsh Mistress
Gert Doering - Munich, Germany [email protected]
signature.asc
Description: PGP signature
_______________________________________________ Openvpn-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openvpn-users
