Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

OpenVPN RW: connection history shows the IP of the DHCP pool #1044

Open
gsanchietti opened this issue Jan 27, 2025 · 3 comments
Open

OpenVPN RW: connection history shows the IP of the DHCP pool #1044

gsanchietti opened this issue Jan 27, 2025 · 3 comments
Labels
verified All test cases were verified successfully
Milestone
NethSecurity 8.5

Comments

@gsanchietti
Copy link
Member

Steps to reproduce

  • Create an OpenVPN Road Warrior instance
  • Create a user and add it to the OpenVPN
  • Make sure to create a reservation
  • Establish a VPN connection using OpenVPN.
  • Check the connection history in the database.
  • Examine the log files (e.g., messages) to compare the IP addresses.

Expected behavior

  • The connection history should reflect the virtual IP assigned to the user during the VPN session.

Actual behavior

  • The connection history incorrectly displays an address from the DHCP pool instead of the real virtual IP assigned to the user.

Components
NethSecurity version: 8-23.05.5-ns.1.4.1

See also

  • Extract from OpenVPN documentation: 
    ifconfig_pool_remote_ip
The remote virtual IP address for the TUN/TAP tunnel taken from an --ifconfig-push directive if specified, or otherwise from the ifconfig pool (controlled by the --ifconfig-pool config file directive). This option is set on the server prior to execution of the --client-connect and --client-disconnect scripts.
  • Additional note:
    • The ifconfig_pool_remote_ip contains the IP from the pool, but this is not the real assigned IP if the user has a reservation. In such cases, the IP must be read from the configuration.

References
@github-project-automation github-project-automation bot moved this to ToDo 🕐 in NethSecurity Jan 27, 2025
@gsanchietti gsanchietti added this to the NethSecurity 8.5 milestone Jan 27, 2025
@gsanchietti gsanchietti mentioned this issue Jan 27, 2025
Merged
@gsanchietti gsanchietti self-assigned this Jan 27, 2025
@gsanchietti gsanchietti moved this from ToDo 🕐 to In Progress 🛠 in NethSecurity Jan 27, 2025
gsanchietti added a commit that referenced this issue Jan 27, 2025
@gsanchietti
fix(ns-openvpn): history, always get correct virtual IP (#1046)
dfe4397 
#1044
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Jan 27, 2025
edited by gsanchietti
Loading

Testing image

@github-actions github-actions bot added the testing Packages are available from testing repositories label Jan 27, 2025
@gsanchietti
Copy link
Member Author

Test case 1

  • Check the issue is not reproducible

Test case 2

  • Do the same test with a user without IP reservation
  • Make sure the connection history reports the correct IP address

@gsanchietti gsanchietti removed their assignment Jan 27, 2025
@francio87 francio87 self-assigned this Jan 27, 2025
@francio87
Copy link
Member

Fixed, tested with release 23.05.5-ns.1.4.1-42-g66ecef537

Image

History :

Image

@francio87 francio87 added verified All test cases were verified successfully and removed testing Packages are available from testing repositories labels Jan 29, 2025
@francio87 francio87 removed their assignment Jan 29, 2025
@nethbot nethbot moved this from In Progress 🛠 to Verified in NethSecurity Jan 29, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
verified All test cases were verified successfully
Projects
NethSecurity
Status: Verified
Milestone
NethSecurity 8.5
Development

No branches or pull requests
2 participants
@gsanchietti @francio87