Hi Lev, 2014-07-29 12:56 GMT+02:00 Lev Stipakov <lstipa...@gmail.com>:
> I am pondering about asynchronous OPENVPN_PLUGIN_CLIENT_CONNECT > callback. Basically, I want _not_ to establish connection until > response is received and ofcI don't want to block rest of traffic. > [ Details of approach snipped. ] What do you think about that? Does that approach sound reasonable? > Some time ago I implemented something quite similar, but never quite managed to officially submit it. You can find my old git branch here [0]. Unfortunately, to be of any use it would need to be ported to a current OpenVPN release / master first. The code has been in use for several years now [1], so the approach and the code basically work quite well. (I think my use case involved calling a Python script, but I might have implemented the plugin part too.) If the OpenVPN commiters see a certain chance, that such a change could be included upstream, I might even try to rebase the branch to master myself... Cheers Fabian 0: http://opensource.fsmi.uni-karlsruhe.de/gitweb/?p=openvpn.git;a=shortlog;h=refs/heads/feat_deferred_client-connect 1: ... in a production environment with several hundred users (together with the equally unofficial VLAN-tagging feature [2]). The feature is needed by a daemon that does asynchronous IP-configuration via a central DHCP server [3]. 2: http://opensource.fsmi.uni-karlsruhe.de/gitweb/?p=openvpn.git;a=shortlog;h=refs/heads/feat_vlan 3: https://gitorious.org/odr
