Zeroshell 2RC3 and Static Route Down.

Forums Network Management ZeroShell Zeroshell 2RC3 and Static Route Down.

  • This topic is empty.
Viewing 5 posts - 1 through 5 (of 5 total)
  • Author
    Posts
  • September 19, 2013 at 12:58 pm #43733
    EtH
    Member

    Good Morning Everybody,
    i’m an old user of Zeroshell (first version installed war 1.0B2!!) that now has a problem with VPN (Static Route).
    When a VPN tunnel LAN1-to-LAN2 goes down for some reason, and then come up (when the connection problem was solved)…. the associated static route that permit the LAN1 traffic goes thru the VPN tunnel can’t come UP automatically!
    With all the old version of Zeroshell i have no problem!
    But now, i’m upgrading all my customer’s Zeroshell’s boxes due to the DNS Exploit (that cause me a lot of problem) and the Static Route’s problem appear in many cases!

    What’s a possibile fix to apply? This problem is very annoying………..

    Thank’s in Advance. (Sorry for the bad english)
    Riccardo

    October 7, 2013 at 6:33 am #52880
    sirioxx
    Member

    I’m having the same issue.

    I have to press ‘change’ button, then ok, and the vpn come up again.
    But It must do it automatically.

    Thank you.

    October 24, 2013 at 8:00 am #52881
    Goblin
    Member

    I’m having the same issue. need help

    October 26, 2013 at 7:38 pm #52882
    imported_fulvio
    Participant

    Sorry for this issue. I’m working to solve it in the new release available soon.

    Regards
    Fulvio

    November 24, 2013 at 6:37 pm #52883
    redfive
    Participant

    For temporarily overcome this issue , I added few lines as cron-job.
    let briefly describe the topology :
    SiteA , vpn-server , lan 192.168.192.0/27 (must be reachable from SiteB) , tunnell ip address 10.10.10.1/30.
    SiteB , vpn-client , lan 192.168.196.0/24 (must be reachable from SiteA) , tunnell ip address 10.10.10.2/30.
    On both sites , I haven’t added any static routes, instead I created one (two*) cron-job ,add_route_vpn, wich is launched every minute (ten minutes*). On siteA

    # Bash script: add_route_vpn-Cron
    
if route -n | grep '^192.168.196.0' ;  then
    
exit ;
    
else
    
if ping -q -c 1 10.10.10.2; then
    
route add -net 192.168.196.0 netmask 255.255.255.0 gw 10.10.10.2 metric 1 ;
    
fi
    
fi

    while , on siteB

    # Bash script: add_route_vpn-Cron
    
if route -n | grep '^192.168.192.0' ;  then
    
exit  ;
    
else
    
if ping -q -c 1 10.10.10.1; then
    
route add -net 192.168.192.0 netmask 255.255.255.224 gw 10.10.10.1 metric 1 ;
    
fi
    
fi

    The routes are added just after that the vpn is up , and in the routing table are marked as auto.
    *Actually , I’ve added a second cron-job , otherwise the previous cron , rapidly fills the Scripts log . These second cron-job are launched every ten minutes , and clears the previous logs . Be careful about hostname , mine are server01 (vpn-server) and server02 (vpn-client) , so on SiteA

    # Bash script: clear_log-Cron
    
year="$(date | awk '{print $NF}')" ;
    
month="$(date | awk '{print $(NF-4)}')" ;
    
day="$(date | awk '{print $(NF-3)}')" ;
    
sed --in-place '/VPN00/d' /Database/LOG/$year/$month/$day/server01/Scripts
    
sed --in-place '/add_route_vpn/d' /Database/LOG/$year/$month/$day/server01/Scripts

    on siteB

    # Bash script: clear_log-Cron
    
year="$(date | awk '{print $NF}')" ;
    
month="$(date | awk '{print $(NF-4)}')" ;
    
day="$(date | awk '{print $(NF-3)}')" ;
    
sed --in-place '/VPN00/d' /Database/LOG/$year/$month/$day/server02/Scripts
    
sed --in-place '/add_route_vpn/d' /Database/LOG/$year/$month/$day/server02/Scripts

    I am aware that It could be done better ….any hints will be very appreciated.
    greetings

  • Author
    Posts
Viewing 5 posts - 1 through 5 (of 5 total)
  • You must be logged in to reply to this topic.