RE: [m0n0wall-dev] OpenVPN on beta10: missing routing option andsome bugs?

From:	Peter Allgeyer <allgeyer at web dot de>
To:	Youri Kersloot <YKersloot at CrossingChannels dot com>
Cc:	m0n0wall dash dev at lists dot m0n0 dot ch
Subject:	RE: [m0n0wall-dev] OpenVPN on beta10: missing routing option andsome bugs?
Date:	Tue, 20 Sep 2005 22:33:40 +0200

Am Dienstag, den 20.09.2005, 22:07 +0200 schrieb Youri Kersloot:
> Rereading the "Read Warrior" document, can you confirm that it will
> send all traffic not to the LAN through the tunnel (like webbrowsing
> on the client machine or the connection to a newsserver on the client pc)
I can confirm, that "Redirect-gateway" deletes your current default gw
and creates a new one pointing to the tunnel device.

>From openvpn(8):

This option performs three steps:
(1) Create a static route for the --remote  address  which  for-
    wards to the pre-existing default gateway.  This is done so that 
    (3) will not create a routing loop.

(2) Delete the default gateway route.

(3) Set the new default gateway to be the VPN  endpoint  address
    (derived  either from --route-gateway or the second parameter to
    --ifconfig when --dev tun is specified).

Ciao ...
	... PIT ...


---------------------------------------------------------------------------
 copyleft(c) by |           Linux! Guerrilla UNIX Development Venimus,
 Peter Allgeyer |   _-_     Vidimus, Dolavimus. (By mah at ka4ybr dot com,
                | 0(o_o)0   Mark A. Horton KA4YBR)
---------------oOO--(_)--OOo-----------------------------------------------