ich habe ein Problem mit meiner Netzwerkbrücke "br0" nachdem ich den Netzwerk Manager installiert habe.
In der Datei "/etc/network/interfaces" habe ich mein OpenVPN Interface wie folgt angelegt:
Code: Alles auswählen
# The bond openvpn network
auto bond0.10
iface bond0.10 inet manual
up ip link set $IFACE up promisc on
down ip link set $IFACE down promisc off
Code: Alles auswählen
# Bridging directive
...
script-security 2
## up "/etc/openvpn/server/up.sh br0 tap0 2360"
up "/etc/openvpn/server/up.sh br0 tap0 1400"
down "/etc/openvpn/server/down.sh br0 tap0"
...
Code: Alles auswählen
root@dsme01:~# cat /etc/openvpn/server/up.sh
#!/bin/bash
#################################
# Set up Ethernet bridge on Linux
# Requires: bridge-utils
#################################
# Define Bridge Interface
br="br0"
# Define list of TAP interfaces to be bridged,
# for example tap="tap0 tap1 tap2".
tap="tap0"
# Define physical ethernet interface to be bridged
# with TAP interface(s) above.
eth="bond0.10"
eth_ip="192.168.190.2"
eth_netmask="255.255.255.0"
eth_gateway="192.168.190.1"
eth_broadcast="192.168.190.255"
for t in $tap; do
openvpn --mktun --dev $t
done
brctl addbr $br
brctl addif $br $eth
for t in $tap; do
brctl addif $br $t
done
for t in $tap; do
ifconfig $t 0.0.0.0 promisc up
done
ifconfig $eth 0.0.0.0 promisc up
ifconfig $br $eth_ip netmask $eth_netmask broadcast $eth_broadcast
root@dsme01:~# cat /etc/openvpn/server/down.sh
#!/bin/bash
####################################
# Tear Down Ethernet bridge on Linux
####################################
# Define Bridge Interface
br="br0"
# Define list of TAP interfaces to be bridged together
tap="tap0"
ifconfig $br down
brctl delbr $br
for t in $tap; do
openvpn --rmtun --dev $t
done
Siehe tcpdump
Code: Alles auswählen
root@dsme01:~# tcpdump -i br0 port 67 or port 68 -e -n -vv
tcpdump: listening on br0, link-type EN10MB (Ethernet), snapshot length 262144 bytes
12:25:17.537385 da:ab:06:79:82:5d > ff:ff:ff:ff:ff:ff, ethertype IPv4 (0x0800), length 342: (tos 0x0, ttl 64, id 0, offset 0, flags [none], proto UDP (17), length 328)
0.0.0.0.68 > 255.255.255.255.67: [udp sum ok] BOOTP/DHCP, Request from da:ab:06:79:82:5d, length 300, xid 0x3a6a6409, Flags [none] (0x0000)
Client-Ethernet-Address da:ab:06:79:82:5d
Vendor-rfc1048 Extensions
Magic Cookie 0x63825363
DHCP-Message (53), length 1: Discover
RSZ (22), length 2: 1400
Parameter-Request (55), length 5:
Subnet-Mask (1), Default-Gateway (3), Domain-Name-Server (6), Domain-Name (15)
Classless-Static-Route (121)
Hostname (12), length 17: "DA:AB:06:79:82:5D"
Client-ID (61), length 7: ether da:ab:06:79:82:5d
12:25:19.469623 da:ab:06:79:82:5d > ff:ff:ff:ff:ff:ff, ethertype IPv4 (0x0800), length 342: (tos 0x0, ttl 64, id 0, offset 0, flags [none], proto UDP (17), length 328)
0.0.0.0.68 > 255.255.255.255.67: [udp sum ok] BOOTP/DHCP, Request from da:ab:06:79:82:5d, length 300, xid 0x1dca848b, Flags [none] (0x0000)
Client-Ethernet-Address da:ab:06:79:82:5d
Vendor-rfc1048 Extensions
Magic Cookie 0x63825363
DHCP-Message (53), length 1: Discover
Parameter-Request (55), length 5:
Subnet-Mask (1), Default-Gateway (3), Domain-Name-Server (6), Domain-Name (15)
Classless-Static-Route (121)
Hostname (12), length 17: "DA:AB:06:79:82:5D"
Client-ID (61), length 7: ether da:ab:06:79:82:5d