Sākums Izpētīt Palīdzība
Reģistrēties Pierakstīties
Apq
/
SoftEtherVPN
spogulis no https://github.com/SoftEtherVPN/SoftEtherVPN.git
1
0
Atdalīts 0
Faili Problēmas 0 Vikivietne
Pārlūkot izejas kodu

Merge PR #828: Added the "OpenVPNPushDummyIPv4AddressOnL2Mode" option for the OpenVPN L2 mode.

Davide Beatrici 6 gadi atpakaļ
vecāks
32172ed82d 58e2f74f7f
revīzija
e87a8693bb
4 mainītis faili ar 28 papildinājumiem un 0 dzēšanām
Dalītais skats Rādīt salīdzināšanas statistiku
  1. 2 0
      src/Cedar/Cedar.c
  2. 1 0
      src/Cedar/Cedar.h
  3. 12 0
      src/Cedar/Proto_OpenVPN.c
  4. 13 0
      src/Cedar/Server.c

+ 2 - 0
src/Cedar/Cedar.c
Parādīt failu 

@@ -1554,6 +1554,8 @@ CEDAR *NewCedar(X *server_x, K *server_k)
 
 

 	StrCpy(c->OpenVPNDefaultClientOption, sizeof(c->OpenVPNDefaultClientOption), OVPN_DEF_CLIENT_OPTION_STRING);

 

+	c->OpenVPNPushDummyIPv4AddressOnL2Mode = true; // Default true. Override by the config file.

+

 #ifdef	BETA_NUMBER

 	c->Beta = BETA_NUMBER;

 #endif	// BETA_NUMBER

+ 1 - 0
src/Cedar/Cedar.h
Parādīt failu 

@@ -1083,6 +1083,7 @@ typedef struct CEDAR
 
 	char OpenVPNDefaultClientOption[MAX_SIZE];	// OpenVPN: Default Client Option String

 	bool OpenVPNObfuscation;					// OpenVPN: Obfuscation mode

 	char OpenVPNObfuscationMask[MAX_SIZE];		// OpenVPN: String (mask) for XOR obfuscation

+	bool OpenVPNPushDummyIPv4AddressOnL2Mode;	// OpenVPN: Push a dummy IPv4 address on L2 mode

 } CEDAR;

 

 // Type of CEDAR

+ 12 - 0
src/Cedar/Proto_OpenVPN.c
Parādīt failu 

@@ -2351,6 +2351,18 @@ void OvsRecvPacket(OPENVPN_SERVER *s, LIST *recv_packet_list, UINT protocol)
 
 									OvsLog(s, se, c, "LP_SET_IPV4_PARAM",

 										ip_client, ip_subnet_mask, ip_defgw, ip_dns1, ip_dns2, ip_wins1, ip_wins2);

 								}

+								else

+								{

+									// OpenVPN L2 mode. To fix the bug of OpenVPN 2.4.6 and particular version of kernel mode TAP driver

+									// on Linux, the TAP device must be up after the OpenVPN client is connected.

+									// However there is no direct push instruction to do so to OpenVPN client.

+									// Therefore we push the dummy IPv4 address (RFC7600) to the OpenVPN client.

+

+									if (s->Cedar->OpenVPNPushDummyIPv4AddressOnL2Mode)

+									{

+										StrCat(option_str, sizeof(option_str), ",ifconfig 192.0.0.8 255.255.255.240");

+									}

+								}

 

 								WriteFifo(c->SslPipe->SslInOut->SendFifo, option_str, StrSize(option_str));

+ 13 - 0
src/Cedar/Server.c
Parādīt failu 

@@ -5872,6 +5872,17 @@ void SiLoadServerCfg(SERVER *s, FOLDER *f)
 
 			}

 		}

 

+		// OpenVPN Push a dummy IPv4 address on L2 mode

+		if (CfgIsItem(f, "OpenVPNPushDummyIPv4AddressOnL2Mode") == false)

+		{

+			// Default enable

+			c->OpenVPNPushDummyIPv4AddressOnL2Mode = true;

+		}

+		else

+		{

+			c->OpenVPNPushDummyIPv4AddressOnL2Mode = CfgGetBool(f, "OpenVPNPushDummyIPv4AddressOnL2Mode");

+		}

+

 		// Disable the NAT-traversal feature

 		s->DisableNatTraversal = CfgGetBool(f, "DisableNatTraversal");

 

@@ -6289,6 +6300,8 @@ void SiWriteServerCfg(FOLDER *f, SERVER *s)
 
 

 		CfgAddStr(f, "OpenVPNDefaultClientOption", c->OpenVPNDefaultClientOption);

 

+		CfgAddBool(f, "OpenVPNPushDummyIPv4AddressOnL2Mode", c->OpenVPNPushDummyIPv4AddressOnL2Mode);

+

 		if (c->Bridge == false)

 		{

 			OPENVPN_SSTP_CONFIG config;