1. 07 Nov, 2019 1 commit
    • Julien Muchembled's avatar
      Remove --ipv6, reuse --ip instead · 343e910a
      Julien Muchembled authored
      The previous commit, which adds --ipv6, has the issue
      that it does not check whether given IPs are valid.
      Since IPv4 & IPv6 use completely different address
      representation, --ip can be used for both.
      343e910a
  2. 06 Nov, 2019 1 commit
    • Julien Muchembled's avatar
      New --ipv6 option and fix learning of external IPv6 from other peers · 0106e2f9
      Julien Muchembled authored
      When re6st attempts to use UPnP and IPv6 is enabled at the same time,
      the external IPv4 was published for IPv6 protocols.
      For example, machine6 in the demo had:
        10.0.1.3,1194,tcp;10.0.1.3,1194,udp;10.0.1.3,1195,udp6
      
      This caused re6stnet to crash (socket.gaierror) if GEOIP2_MMDB is set.
      
      With this commit, IPv4 & IPv6 are now processed independently.
      0106e2f9
  3. 15 May, 2019 1 commit
  4. 08 Apr, 2015 1 commit
  5. 07 Mar, 2015 2 commits
  6. 06 Mar, 2015 1 commit
  7. 20 Nov, 2013 1 commit
    • Julien Muchembled's avatar
      Disable UDP protocol by default for OpenVPN tunnels · cd653523
      Julien Muchembled authored
      UDP protocol is useless if nothing is done to prevent fragmentation.
      Otherwise, it is at best unefficient.
      
      There exist routers on the internet that filter fragmented packets with specific
      data. This is hard to debug because TCP connections hang randomly when there is
      no OpenVPN encryption.
      
      Now, only TCP is enabled by default. A second protocol should be there for
      better performance when possible, either existing UDP one (provided it is
      guaranteed there is no fragmentation) or something better (GRE ?).
      cd653523
  8. 13 May, 2013 1 commit
    • Julien Muchembled's avatar
      Abort in case of unexpected default route · eba6c762
      Julien Muchembled authored
      This is a common misconfiguration that may break internet acces for other peers.
      
      We also stop checking for child process termination when used without tunnel
      manager (i.e. with --client or --client-count=0) because it conflicts with the
      'ip route' command that is called every minute if --table=0 is used.
      Anyway, with a tunnel manager, only openvpn client are watched.
      eba6c762
  9. 24 Sep, 2012 1 commit
  10. 10 Sep, 2012 2 commits
  11. 06 Sep, 2012 2 commits
  12. 30 Aug, 2012 1 commit