FS#44295 - [netctl] Multiple tap connections don't get along at all, especially not with a bridge
Attached to Project:
Arch Linux
Opened by David Kowis (BeepDog) - Sunday, 22 March 2015, 01:43 GMT
Last edited by Jouke Witteveen (jouke) - Sunday, 08 October 2017, 08:19 GMT
Opened by David Kowis (BeepDog) - Sunday, 22 March 2015, 01:43 GMT
Last edited by Jouke Witteveen (jouke) - Sunday, 08 October 2017, 08:19 GMT
|
Details
Description:
I've got a fairly standard openvpn setup: br0 made of eth0, tap0, and tap1 Tap0 and tap1 will be openvpn connections that are bridged to the local network by the localnet config Configuration files follow at the bottom. If I `netctl stop openvpntap0` (or stop openvpntap1) the right tap interface is destroyed, but the bridge is also destroyed, and so the local network becomes inaccessable. If I `ifconfig tap0 down` the bridge remains up, and everything is perfectly fine. Netctl config files: ============================================================================================ [root@moebius netctl]# cat localnet # MANAGED BY PUPPET Interface="br0" Connection="bridge" Description="Vpn Server local bridge" BindsToInterfaces=('eth0' 'tap0' 'tap1') # set up the static IP for this bridge IP='static' # TODO change this when setting up the real server. Address=(10.10.220.252/24 224.0.0.0/4) # TODO: do I want my own dns resolver? DNS=('10.10.220.230' '10.10.220.231') Gateway='10.10.220.254' FwdDelay=10 MaxAge=10 ## Set up ipv6 on this interface as well IP6='static' # new subnet 2607:f878:ff00:805a::/64 Address6=('2607:f878:ff00:805a::4/64 nodad' 'FD99:FEED:DEAD:BEEF::4/64 nodad') # give it a long timeout, even though it'll probably fail.. TimeoutDAD=30 ============================================================================================ [root@moebius netctl]# cat openvpntap0 # MANAGED BY PUPPET Description="Openvpn Tap Connection" Interface=tap0 Connection=tuntap Mode=tap User=nobody Group=nobody ============================================================================================ [root@moebius netctl]# cat openvpntap1 # MANAGED BY PUPPET Description="Openvpn Tap Connection" Interface=tap1 Connection=tuntap Mode=tap User=nobody Group=nobody ============================================================================================ It'd be really nice if something could degrade gracefully here, or at least not lose my bridge when shutting down one of the interfaces. |
This task depends upon
Closed by Jouke Witteveen (jouke)
Sunday, 08 October 2017, 08:19 GMT
Reason for closing: No response
Sunday, 08 October 2017, 08:19 GMT
Reason for closing: No response
Comment by Jouke Witteveen (jouke) -
Sunday, 14 June 2015, 12:56 GMT
I agree that it looks like the bridge should not come down. Can
you find out why it does? At the moment I do not have the time to
research this myself.