|
|
Hi all, openvpn does not seem to recognized if the dns server in /etc/resolv.conf changes. This is my setup on Debian Sid: * NAT'ed laptop (2.0_rc20): remote kreuzberg.homelinux.org dev tap2 ifconfig 104.193.1.6 255.255.255.240 secret laptop.key.txt port 5013 #comp-lzo ping 15 ping-restart 120 resolv-retry infinite float verb 3 fragment 1300 mssfix * remote server with dynIP and dyndns (2.0_rc16): dev tap2 ifconfig 104.193.1.5 255.255.255.240 secret laptop.key.txt port 5013 float fragment 1300 mssfix # laptop zu br0 hinzufuergen up "sh /etc/openvpn/bridge-laptop-start" What seems to happen is the following on my NAT'ed laptop: 0) alle ifaces are down 1) openvpn is started by init script 2) openvpn can not resolv the remote dyndns host, ie: Apr 14 11:09:46 localhost ovpn-kreuzberg[4305]: RESOLVE: Cannot resolve host address: kreuzberg.homelinux.org: [TRY_AGAIN]A temporary error occurred on an authoritative name server. 3) iface goes up and gets a dns by dhcp. However, I still get an TRY_AGAIN error in my /var/log/daemon.log by openvpn, _so openvpn does not seem to update to the new dns server_ 4) I need to "/etc/init.d/openvpn restart" to get the tunnel established One can reproduce this by the following: 1) Have a /etc/resolv.conf with an invalid nameserver (as you would have with roaming laptop connecting different dhcp servers) 2) start openvpn and therefore getting the TRY_AGAIN error 3) change the /etc/resolv.conf to have a valid nameserver in it 4) you will still get the TRY_AGAIN error, though you can now ping the remote host manually Should I file a bug report (if yes, where?) or do I oversee anything? TIA, Jens ____________________________________________ Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users |