Re: UPDATE: vpnc - 0.5.1
On Tue, 18 Sep 2007 14:29:10 +0100 Stuart Henderson [EMAIL PROTECTED] wrote: I think gcc 3 would be preferable if can be made to work, can you try it with -O0? I tried that option, and found that I was able to connect to the vpn and use it for awhile. So there is some hope that gcc3 may work. However, I'm seeing another issue now, and I'm going to regress to an earlier port vpnc-0.4.1 to see if happens there. I've been using vpnc-0.4.1 + egcc very successfully since around March. What I'm now seeing with this version (-0.5.1) is that after I take down the connection with pkill vpnc (after using it for awhile) I can't reconnect outside of my local network. This happens regardless of gcc3 or gcc4. (Therefore my initial report of success needs to be qualified.) I can connect to local machines, and my gateway router admin, but I can't, for example, ping www.yahoo.com, connect to google, etc. I have to reboot the box. What I also see is that after I take down the link I have to restart my NIC by running /etc/netstart sk0 to get any kind of communication to the local net; but netstart does not fix all the problems. Never had this problem with -0.4.1 Something's not right and I can't exclude pilot error at this point :) Since I need vpnc to connect to my univ. I'm going to try to sort this out. -- Frederick C. Druseikis [EMAIL PROTECTED]
Re: UPDATE: vpnc - 0.5.1
On 2007/09/17 19:11, Frederick C. Druseikis wrote: Works reliably on amd64 if compiled with egcc (gcc-4.2-2007xx) from ports; fails in odd ways on amd64 if compiled under obsd cc 4.1 (this is a gcc 3.x problem known to vpnc devs) I think gcc 3 would be preferable if can be made to work, can you try it with -O0?
Re: UPDATE: vpnc - 0.5.1
On 2007/09/18 14:29, Stuart Henderson wrote: On 2007/09/17 19:11, Frederick C. Druseikis wrote: Works reliably on amd64 if compiled with egcc (gcc-4.2-2007xx) from ports; fails in odd ways on amd64 if compiled under obsd cc 4.1 (this is a gcc 3.x problem known to vpnc devs) I think gcc 3 would be preferable if can be made to work, can you try it with -O0? oh, hang on... try this patch instead. http://www.gossamer-threads.com/lists/engine?do=post_attachment;postatt_id=109;list=vpnc
Re: UPDATE: vpnc - 0.5.1
On Tue, Sep 18, 2007 at 02:34:42PM +0100, Stuart Henderson wrote: On 2007/09/18 14:29, Stuart Henderson wrote: On 2007/09/17 19:11, Frederick C. Druseikis wrote: Works reliably on amd64 if compiled with egcc (gcc-4.2-2007xx) from ports; fails in odd ways on amd64 if compiled under obsd cc 4.1 (this is a gcc 3.x problem known to vpnc devs) I think gcc 3 would be preferable if can be made to work, can you try it with -O0? oh, hang on... try this patch instead. http://www.gossamer-threads.com/lists/engine?do=post_attachment;postatt_id=109;list=vpnc this patch is already in the vpnc tree.
Re: UPDATE: vpnc - 0.5.1
On Fri, 14 Sep 2007 02:24:20 +0200 Thomas Schoeller [EMAIL PROTECTED] wrote: here is a port with all these suggestions On Thu, Sep 13, 2007 at 04:46:37PM +0200, Thomas Schoeller wrote: hello, runs fine for me on macppc and i386 against a Cisco Systems, Inc./VPN 3000 Concentrator Version 4.1.7.Q Works reliably on amd64 if compiled with egcc (gcc-4.2-2007xx) from ports; fails in odd ways on amd64 if compiled under obsd cc 4.1 (this is a gcc 3.x problem known to vpnc devs) attached vpnc.tar.gz includes BUILD_DEPENDS and MAKE_FLAGS conditional on amd64 -- Frederick C. Druseikis [EMAIL PROTECTED] vpnc.tar.gz Description: Binary data
Re: UPDATE: vpnc - 0.5.1
hello, runs fine for me on macppc and i386 against a Cisco Systems, Inc./VPN 3000 Concentrator Version 4.1.7.Q suggestions: - remove .orig files - install a sample split tunnel script split.sh: #!/bin/sh # this effectively disables changes to /etc/resolv.conf INTERNAL_IP4_DNS= # This sets up split networking regardless # of the concentrators specifications. # You can add as many routes as you want, # but you must set the counter $CISCO_SPLIT_INC # accordingly CISCO_SPLIT_INC=1 CISCO_SPLIT_INC_0_ADDR=10.0.0.0 CISCO_SPLIT_INC_0_MASK=255.255.0.0 CISCO_SPLIT_INC_0_MASKLEN=16 CISCO_SPLIT_INC_0_PROTOCOL=0 CISCO_SPLIT_INC_0_SPORT=0 CISCO_SPLIT_INC_0_DPORT=0 . /etc/vpnc/vpnc-script - patch against vpnc-script that not existing routes get not removed(prevents error messages in split tunnel mode). but i do know how to check if a route exists which handle special netmask because route/netstat shows routes in cidr notation. tomorrow i will see if dead peer detection and rekeying works. thomas On Wed, Sep 12, 2007 at 09:47:08PM -0500, Aaron Hsu wrote: The compressed archive of the port is available at http://www.sacrificumdeo.net/vpnc.tar.gz -- ((name Aaron Hsu) (email/xmpp [EMAIL PROTECTED]) (phone 703-597-7656) (site http://www.aaronhsu.com;))
Re: UPDATE: vpnc - 0.5.1
here is a port with all these suggestions On Thu, Sep 13, 2007 at 04:46:37PM +0200, Thomas Schoeller wrote: hello, runs fine for me on macppc and i386 against a Cisco Systems, Inc./VPN 3000 Concentrator Version 4.1.7.Q suggestions: - remove .orig files - install a sample split tunnel script split.sh: #!/bin/sh # this effectively disables changes to /etc/resolv.conf INTERNAL_IP4_DNS= # This sets up split networking regardless # of the concentrators specifications. # You can add as many routes as you want, # but you must set the counter $CISCO_SPLIT_INC # accordingly CISCO_SPLIT_INC=1 CISCO_SPLIT_INC_0_ADDR=10.0.0.0 CISCO_SPLIT_INC_0_MASK=255.255.0.0 CISCO_SPLIT_INC_0_MASKLEN=16 CISCO_SPLIT_INC_0_PROTOCOL=0 CISCO_SPLIT_INC_0_SPORT=0 CISCO_SPLIT_INC_0_DPORT=0 . /etc/vpnc/vpnc-script - patch against vpnc-script that not existing routes get not removed(prevents error messages in split tunnel mode). but i do know how to check if a route exists which handle special netmask because route/netstat shows routes in cidr notation. tomorrow i will see if dead peer detection and rekeying works. thomas On Wed, Sep 12, 2007 at 09:47:08PM -0500, Aaron Hsu wrote: The compressed archive of the port is available at http://www.sacrificumdeo.net/vpnc.tar.gz -- ((name Aaron Hsu) (email/xmpp [EMAIL PROTECTED]) (phone 703-597-7656) (site http://www.aaronhsu.com;)) vpnc.tar.gz Description: application/tar-gz
