Public bug reported:
Binary package hint: network-manager-openvpn
I am using gutsy, up to date with updates.
I have been playing with openvpn, and i realized i would like more TAP
interface instead of TUN. I want it because it work more like normal
device and i can have ipv4 configuration with openvpn config and also
ipv6 using external radvd listening on device tap_vpn on server.
There is checkbox for TAP type device, that is good. Problem is, it is
not supported enough to work with other options. It cannot pull routes,
which is unfortunate, but can be changed manually in dialog. I wanted to
route only my private ranges, so i can work at full speed of internet
connection and still have connection to home. So i added 192.168.70.0/24
and some more routes to manually specify networks. This option does work
pretty well for tun device.
Problem is, tap device acts like ethernet device, not like point-to-
point. So you need arp there to locate remote end. And there is problem,
because all routes added to route table have not specified gateway ip.
For tap device, you cannot simply route it to tap device, you have to
specify also gateway ip. And using NM gui, i cannot set that. So i tried
to remove specific routes and route all traffic to vpn. Interesting is,
it does not work also, because same problem there. Default route has
gateway ip 0.0.0.0 with route 0.0.0.0/0 on device tap0. That cannot work
and really does not work. So, for tap device, it needs more changes than
one checkox for overriding dev tun command. So in fact, TAP device can
work only as connection to IP of vpn server, it cannot route to next
hops. I think this is what most users want.
It does work well in windows and linux using command line openvpn,
because i can fix this on server push configuration. I need add gateway
ip to push route commands. But using nm it does not allow any changes
even it if does not work at all.
Please dont fix it using switch to tun device. It might be possible, but
still it is not the same. Someone may need tap for whatever reason, and
it is offered, but not fully functional.
** Affects: network-manager-openvpn (Ubuntu)
Importance: Undecided
Status: New
--
Not working routes with TAP device
https://bugs.launchpad.net/bugs/201777
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs