FS#29887 - [openvpn] Add ipv6 payload patch

Attached to Project: Arch Linux
Opened by Felix Yan (felixonmars) - Monday, 14 May 2012, 18:21 GMT
Last edited by Evangelos Foutras (foutrelis) - Thursday, 31 January 2013, 14:19 GMT
Task Type Feature Request
Category Packages: Core
Status Closed
Assigned To Thomas Bächler (brain0)
Architecture All
Severity Low
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 2
Private No

Details

Would it be possible to include the ipv6 patch that is e.g. related to on https://github.com/jjo/openvpn-ipv6/downloads
As Ubuntu added this patch since 10.04 "lucid", and IPv6 has been going much more popular these years, I want the official "openvpn" package could accept this patch too.
This task depends upon

Closed by  Evangelos Foutras (foutrelis)
Thursday, 31 January 2013, 14:19 GMT
Reason for closing:  Implemented
Additional comments about closing:  openvpn 2.3.0-1 in [testing] includes IPv6 support.
Comment by Greg (dolby) - Monday, 15 October 2012, 10:46 GMT
What does openvpn upstream think about this? Did you try contacting them?
Comment by Felix Yan (felixonmars) - Monday, 15 October 2012, 10:55 GMT
They are including this patch in 2.3 series but it has been long before a stable version of 2.3.
Comment by Thomas Bächler (brain0) - Monday, 15 October 2012, 11:23 GMT
Wait, so you're telling me that current stable OpenVPN versions do not support ipv6 transports? I didn't realize that. However, this requires thorough review.
Comment by Felix Yan (felixonmars) - Monday, 15 October 2012, 11:33 GMT
@Thomas
Yes I can assume this:

$ openvpn --dev tun --proto udp6
Options error: Bad protocol: 'udp6'. Allowed protocols with --proto option: [ud
p] [tcp-server] [tcp-client] [tcp]

$ openvpn --dev tun --proto udp --remote 2001:470:20::2
Mon Oct 15 19:30:13 2012 OpenVPN 2.2.2 x86_64-unknown-linux-gnu [SSL] [LZO2] [EP
OLL] [eurephia] built on Aug 18 2012
Mon Oct 15 19:30:13 2012 IMPORTANT: OpenVPN's default port number is now 1194, b
ased on an official port number assignment by IANA. OpenVPN 2.0-beta16 and earl
ier used 5000 as the default port.
Mon Oct 15 19:30:13 2012 NOTE: OpenVPN 2.1 requires '--script-security 2' or hig
her to call user-defined scripts or executables
Mon Oct 15 19:30:13 2012 ******* WARNING *******: all encryption and authenticat
ion features disabled -- all data will be tunnelled as cleartext
Mon Oct 15 19:30:13 2012 RESOLVE: Cannot resolve host address: 2001:470:20::2: [
HOST_NOT_FOUND] The specified host is unknown.

And same command to use udp6 with AUR/openvpn-dev 2.3_beta1:

$ openvpn --dev tun --proto udp6
Mon Oct 15 19:32:25 2012 OpenVPN 2.3_beta1 x86_64-unknown-linux-gnu [SSL (OpenSS
L)] [LZO] [EPOLL] [eurephia] [MH] [IPv6] built on Oct 15 2012
Comment by Thomas Bächler (brain0) - Monday, 15 October 2012, 11:35 GMT
I am still shocked by this, but yes, we need to fix it.
Comment by Damian Bushong (katana) - Wednesday, 16 January 2013, 20:35 GMT
for the record: current version of openvpn (2.3 line) adds ipv6 support

Loading...