www.zeroshell.org Forum Index www.zeroshell.org
Linux Distribution for server and embedded devices
 
 SearchSearch  RegisterRegister  UsergroupsUsergroups 
 ProfileProfile  Log inLog in  Log in to check your private messagesPrivate Message 

Zeroshell 2RC3 and Static Route Down.

 
Post new topic   Reply to topic    www.zeroshell.org Forum Index -> ZeroShell
View previous topic :: View next topic  
Author Message
EtH



Joined: 19 Sep 2013
Posts: 1

PostPosted: Thu Sep 19, 2013 12:58 pm    Post subject: Zeroshell 2RC3 and Static Route Down. Reply with quote

Good Morning Everybody,
i'm an old user of Zeroshell (first version installed war 1.0B2!!) that now has a problem with VPN (Static Route).
When a VPN tunnel LAN1-to-LAN2 goes down for some reason, and then come up (when the connection problem was solved).... the associated static route that permit the LAN1 traffic goes thru the VPN tunnel can't come UP automatically!
With all the old version of Zeroshell i have no problem!
But now, i'm upgrading all my customer's Zeroshell's boxes due to the DNS Exploit (that cause me a lot of problem) and the Static Route's problem appear in many cases!

What's a possibile fix to apply? This problem is very annoying...........

Thank's in Advance. (Sorry for the bad english)
Riccardo
Back to top
View user's profile Send private message
sirioxx



Joined: 17 Jan 2012
Posts: 9

PostPosted: Mon Oct 07, 2013 6:33 am    Post subject: Reply with quote

I'm having the same issue.

I have to press 'change' button, then ok, and the vpn come up again.
But It must do it automatically.

Thank you.
Back to top
View user's profile Send private message
Goblin



Joined: 24 Oct 2013
Posts: 1

PostPosted: Thu Oct 24, 2013 8:00 am    Post subject: Reply with quote

I'm having the same issue. need help
Back to top
View user's profile Send private message
fulvio
Site Admin


Joined: 01 Nov 2006
Posts: 1073

PostPosted: Sat Oct 26, 2013 7:38 pm    Post subject: Reply with quote

Sorry for this issue. I'm working to solve it in the new release available soon.

Regards
Fulvio
Back to top
View user's profile Send private message Send e-mail
redfive



Joined: 27 Aug 2009
Posts: 232

PostPosted: Sun Nov 24, 2013 6:37 pm    Post subject: Reply with quote

For temporarily overcome this issue , I added few lines as cron-job.
let briefly describe the topology :
SiteA , vpn-server , lan 192.168.192.0/27 (must be reachable from SiteB) , tunnell ip address 10.10.10.1/30.
SiteB , vpn-client , lan 192.168.196.0/24 (must be reachable from SiteA) , tunnell ip address 10.10.10.2/30.
On both sites , I haven't added any static routes, instead I created one (two*) cron-job ,add_route_vpn, wich is launched every minute (ten minutes*). On siteA
Code:
# Bash script: add_route_vpn-Cron
if route -n | grep '^192.168.196.0' ;  then
   exit ;
else
   if ping -q -c 1 10.10.10.2; then     
      route add -net 192.168.196.0 netmask 255.255.255.0 gw 10.10.10.2 metric 1 ;
   fi
fi
while , on siteB
Code:
# Bash script: add_route_vpn-Cron
if route -n | grep '^192.168.192.0' ;  then
   exit  ;
else
   if ping -q -c 1 10.10.10.1; then
      route add -net 192.168.192.0 netmask 255.255.255.224 gw 10.10.10.1 metric 1 ;
   fi
fi
The routes are added just after that the vpn is up , and in the routing table are marked as auto.
*Actually , I've added a second cron-job , otherwise the previous cron , rapidly fills the Scripts log . These second cron-job are launched every ten minutes , and clears the previous logs . Be careful about hostname , mine are server01 (vpn-server) and server02 (vpn-client) , so on SiteA
Code:
# Bash script: clear_log-Cron
year="$(date | awk '{print $NF}')" ;
month="$(date | awk '{print $(NF-4)}')" ;
day="$(date | awk '{print $(NF-3)}')" ;
sed --in-place '/VPN00/d' /Database/LOG/$year/$month/$day/server01/Scripts
sed --in-place '/add_route_vpn/d' /Database/LOG/$year/$month/$day/server01/Scripts
on siteB
Code:
# Bash script: clear_log-Cron
year="$(date | awk '{print $NF}')" ;
month="$(date | awk '{print $(NF-4)}')" ;
day="$(date | awk '{print $(NF-3)}')" ;
sed --in-place '/VPN00/d' /Database/LOG/$year/$month/$day/server02/Scripts
sed --in-place '/add_route_vpn/d' /Database/LOG/$year/$month/$day/server02/Scripts
I am aware that It could be done better ....any hints will be very appreciated.
greetings
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    www.zeroshell.org Forum Index -> ZeroShell All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB © 2001, 2005 phpBB Group