Ubuntu
network-manager-openvpn package

n-m-openvpn: default route is erased even if none is pushed by server

Bug #279597 reported by Robert Buhren
30
This bug affects 4 people
Affects Status Importance Assigned to Milestone
network-manager-openvpn (Debian)
New
Unknown
network-manager-openvpn (Fedora)
Invalid
Unknown
network-manager-openvpn (Ubuntu)
New
Undecided
Unassigned

Bug Description

Binary package hint: network-manager-openvpn

Description: Ubuntu intrepid (development branch)
Release: 8.10

Source package : network-manager-openvpn
Version : 0.7~~svn20080928t225540-0ubuntu1

Before making the connection my routing-table looks like this :

10.0.2.0 0.0.0.0 255.255.255.0 U 1 0 0 eth0
0.0.0.0 10.0.2.2 0.0.0.0 UG 0 0 0 eth0

after connecting to my openvpn server it looks like this ( i don't push routes to my vpn clients) :
The X's represent my openvpn server

xxx.xxx.xxx.xxx 10.0.2.2 255.255.255.255 UGH 0 0 0 eth0
10.11.12.0 0.0.0.0 255.255.255.0 U 0 0 0 tap0
10.0.2.0 0.0.0.0 255.255.255.0 U 1 0 0 eth0
0.0.0.0 0.0.0.0 0.0.0.0 U 0 0 0 tap0

what i'm expecting is a routing table like this :

10.0.2.0 0.0.0.0 255.255.255.0 U 1 0 0 eth0
0.0.0.0 10.0.2.2 0.0.0.0 UG 0 0 0 eth0
10.11.12.0 0.0.0.0 255.255.255.0 U 0 0 0 tap0

there's no need for the network-manager to alter my default gw since i don't want my traffic to be routed through the vpn connection

Revision history for this message
Bjoern Ricks (bjoern-ricks-googlemail) wrote :

This bug also affects hardy. Every push route entry in the openvpn server.conf is ignored by the network-manager-openvpn module in tap mode. It always sets the route 0.0.0.0 0.0.0.0 0.0.0.0 U 0 0 0 tap0. Therefore the module isn't usable at the moment.

Revision history for this message
Joseph (joenmtl) wrote :

In a recent change to network-manager-openvpn that came after Hardy Beta release, I had trouble accessing machines on the other side of the vpn. After troubleshooting the problem, I found that the routing of subnet 10.0.0.0 is going not to the vpn device. This was working fine between Alpha 4 and Beta.

10.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 tap0
0.0.0.0 192.168.0.1 0.0.0.0 UG 0 0 0 eth0

I have to manually edit the routing table to get it to work.

Revision history for this message
Aldrin Martoq (amartoq) wrote :

This bug affects me too, after upgrading from 8.04 -> 8.10 I had to recreate the VPN connections.

I use TAP device, and networkmanager replaces the default route using gw 0.0.0.0 in device tap which is wrong. I tried changing some settings in the advanced tabs but no luck. Installed version is:
network-manager-openvpn 0.7~~svn20081015t024626-0ubuntu1

Thanks,

Revision history for this message
hads (hads) wrote :

I've just run across this issue also. Using Intrepid

Revision history for this message
Lionel Porcheron (lionel.porcheron) wrote :

This issue is still present in jaunty.

As a workaround, you can go in the VPN configuration screen in Network Manager, IPv4 Settings tab, routes and check last option "Use this connexion only for resources on its network".

Revision history for this message
Lionel Porcheron (lionel.porcheron) wrote :

This problem even if reported on -openvpn plugin does not look specific to -openvpn.

Bug Watch Updater (bug-watch-updater)
Changed in network-manager-openvpn:
status: Unknown → New
Bug Watch Updater (bug-watch-updater)
Changed in network-manager-openvpn:
status: Unknown → Confirmed
Revision history for this message
Thierry Carrez (ttx) wrote :

Looks like a duplicate of bug 330833... There is a workaround described there.

Bug Watch Updater (bug-watch-updater)
Changed in network-manager-openvpn (Fedora):
status: Confirmed → Invalid
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.