 dfrandinPremium
join:2002-06-14
Las Vegas, NV
 ·Cox HSI
 ·ThrustVPS
1 edit | Tomato 1.27vpn OpenVPN issue-RESOLVEDFound the answer elsewhere, but since DSLR doesn't seem to have a "delete post", I'll just mark it as resolved..
-----------------------------------------------------------------
I have Tomato 1.27vpn on a Linksys WRT54GL. I have 3 permanent and several transient tunnels running on it and need to have the same end-point IP addresses assigned each time the client connects, and after the router is rebooted, or the endpoints are restarted. There seemed to be no way to accomplish this via the Tomato webgui, so a bit of googling found a workaround, which would seem to work fine, but does not. The workaround is to put a script into the Tomato Admin:Scripts:Firewall area as follows:
sleep 10
mkdir -p /etc/openvpn/server1/ccd/
echo "ifconfig-push 10.10.XX.XX 10.10.XX.XX" > /etc/openvpn/server1/ccd/client1
echo "ifconfig-push 10.10.XX.XX 10.10.XX.XX" > /etc/openvpn/server1/ccd/client2
echo "ifconfig-push 10.10.XX.XX 10.10.XX.XX" > /etc/openvpn/server1/ccd/client3
The endpoint IP addresses follow the requirements of the OpenVPN client endpoint table (in the Community Howto).
This does not appear to run, such that when router is rebooted, endpoint addresses are assigned sequentially, and there is no /etc/openvpn/server1/ccd directory or client files. If I take the exact same code and run it manually from an ssh shell on the router, the ccd directory is created, and each client file is created with the "ifconfig-push" line. I've tried moving it from the firewall area to the wan-up area, with no change. As of now, I am forced to manually run the script, then /etc/init.d/openvpn restart each client... Any idea what's hozed here?? I don't recall where I got the script idea..
Dave |
