VPN Traffic issues
Thierry MUSEUX - www.fwt.fr -
tm at fwt.fr
Tue Mar 10 05:49:11 UTC 2009
It seems there is bug in /etc/chilli/functions
This should be:
files_equal() {
[ -x /usr/bin/cmp ] && {
cmp -s $1 $2 || return 1;
}
return 0;
[ -x /bin/md5sum ] && {
[ "$(md5sum $1 | cut -f1 -d' ')" = "$(md5sum $2 | cut -f1 -d' ')" ]
&& return 0;
return 1;
}
return 1;
}
I have to submit a patch
Thierry Museux
-----Message d'origine-----
De : Daniel Garcia [mailto:DGarcia at globalgossip.net]
Envoyé : mardi 10 mars 2009 02:39
À : chilli at coova.org
Objet : RE: VPN Traffic issues
I added HS_UAMLOGOUTIP=127.0.0.1 to my config file but when I restart coova
it is not in the generated main.conf file.
Can you please specify exactly where and how you configured this?
Thanks
Daniel Garcia
IT Assistant Manager
Core Infrastructure & Systems Development
Global Gossip Group
[a] 14 Wentworth Avenue, Sydney, NSW 2010
[t] +612 9263 0458
[f] +612 9263 0404
[m] 0400 604 897
[e] dgarcia at globalgossip.net
-----Original Message-----
From: wlanmac [mailto:wlan at mac.com]
Sent: Monday, 9 March 2009 7:02 PM
To: chilli at coova.org
Subject: Re: VPN Traffic issues
Thanks for the suggestion!
David
On Mon, 2009-03-09 at 08:52 +0100, Oliver Hinckel wrote:
> Daniel Garcia wrote on 03/09/2009 01:10 AM:
> [...]
> >> You might want to do a wireshark dump (or tcpdump) of the subscriber's
> >> traffic. Or, run chilli in debug mode to help see what it is doing. The
> >> first question is: can the subscriber surf the walled garden or does
> >> *nothing* work?
> > surf the walled garden? Sorry you lost me. Browsing the internet is fine
> > when subscribers log in correctly. Once logged in and successfully
> > browsing, if they VPN, then browsing stops working. I notice that DNS
> > is working because I see the browser resolving the name URL...it appears
> > to be something in the iptables is preventing it
>
> We had same problems with surfen when VPN was activated. The problem
> was, that the VPN software (doesn't remember which VPN software and type
> of VPN was used) tries to contact IP address 1.1.1.1 which is the
> default value for the "uamlogoutip" settings:
>
> http://coova.org/wiki/index.php/CoovaChilli/chilli.conf(5)
>
> So if the customer starts his VPN the software contacted the IP address
> 1.1.1.1 (or tries at least to contact) and chilli logged them out. The
> customer wasn't able to surf the web anymore.
>
> To solve this problem, we changed the "uamlogoutip" value to 127.0.0.1
> since we don't need this configuration with logging out by contacting a
> specific IP address.
>
> HTH
>
> - Olli
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: chilli-unsubscribe at coova.org
> For additional commands, e-mail: chilli-help at coova.org
> Wiki: http://coova.org/wiki/index.php/CoovaChilli
> Forum: http://coova.org/phpBB3/viewforum.php?f=4
>
---------------------------------------------------------------------
To unsubscribe, e-mail: chilli-unsubscribe at coova.org
For additional commands, e-mail: chilli-help at coova.org
Wiki: http://coova.org/wiki/index.php/CoovaChilli
Forum: http://coova.org/phpBB3/viewforum.php?f=4
---------------------------------------------------------------------
To unsubscribe, e-mail: chilli-unsubscribe at coova.org
For additional commands, e-mail: chilli-help at coova.org
Wiki: http://coova.org/wiki/index.php/CoovaChilli
Forum: http://coova.org/phpBB3/viewforum.php?f=4
More information about the Chilli
mailing list