[OpenWrt-Devel] openvpn issues with 18.06-rc2 on ubnt-erx-sfp

[Torbjorn Jansson]

On 2018-07-27 15:13, Torbjorn Jansson wrote:
> Hi
> 
> i got another issue related to my upgrade to 18.06-rc2.
> 
> there is something odd going on with openvpn.
> first of all syslog contains "IP packet with unknown IP version=15 seen"
> some searching indicates this is related to comp-lzo setting in openvpn.
> 
> i already have comp-lzo specified in the config file /etc/config/openvpn but 
> this appears to not make it all the way to the generated file.
> so generated file under /var/etc/openvpn-vpnserver.conf does not contain 
> comp-lzo and that is likely why openvpn server complains with:
> 
> WARNING: 'comp-lzo' is present in remote config but missing in local config, 
> remote='comp-lzo'
> when a client connects (there is also a warning about inconsistent link-mtu but 
> i suspect thats something else)
> 
> according to this page:
> https://community.openvpn.net/openvpn/wiki/DeprecatedOptions
> comp-lzo a depreciated option and i suspect i should be using "compress lzo" 
> instead to make my openvpn 2.3 client happy.
> 
> 
> so, how do i fix the comp-lzo setting?
> 

i have figured it out but i still think there is something that needs fixing.
i fixed the problem by setting the "compress" setting manualy to "lzo"
this setting is not available via web gui so you have to use uci
like so:
uci set openvpn.vpnserver.compress='lzo'
uci commit openvpn

since comp-lzo is depreciated i think this option should be removed from luci 
web interface and replaced with compress instead.
possibly adding some logic to convert from "comp-lzo yes" to "compress lzo" or 
similar.
or just leave it and let user deal with it, possibly with a note somewhere that 
you may have to do this manually depending on client versions used.

_______________________________________________
openwrt-devel mailing list
openwrt-devel at lists.openwrt.org
https://lists.openwrt.org/mailman/listinfo/openwrt-devel