- 16 Jan, 2014 1 commit
-
-
Julien Muchembled authored
Some servers can only be accessed via their re6st IP. re6st itself uses little memory so it should not die when it fails to fork.
-
- 23 Dec, 2013 1 commit
-
-
Julien Muchembled authored
-
- 25 Nov, 2013 1 commit
-
-
Julien Muchembled authored
This is a workaround waiting that we have better criteria to select tunnels to create or destroy.
-
- 21 Nov, 2013 1 commit
-
-
Julien Muchembled authored
-
- 20 Nov, 2013 2 commits
-
-
Julien Muchembled authored
UDP protocol is useless if nothing is done to prevent fragmentation. Otherwise, it is at best unefficient. There exist routers on the internet that filter fragmented packets with specific data. This is hard to debug because TCP connections hang randomly when there is no OpenVPN encryption. Now, only TCP is enabled by default. A second protocol should be there for better performance when possible, either existing UDP one (provided it is guaranteed there is no fragmentation) or something better (GRE ?).
-
Julien Muchembled authored
For the moment, this does nothing since it should always be 1500.
-
- 13 Nov, 2013 1 commit
-
-
Julien Muchembled authored
This reverts commit 7dbc38d7. Fixed upstream in version 0.2 See also http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=725344
-
- 01 Oct, 2013 1 commit
-
-
Julien Muchembled authored
-
- 27 Sep, 2013 1 commit
-
-
Julien Muchembled authored
The way peer addresses were exchanged polluted caches with information about dead nodes. In particular, bootstrapping often took a long time because the cache of the primary node was mostly useless. This also fixes bootstrap of registry.
-
- 09 Aug, 2013 1 commit
-
-
Julien Muchembled authored
-
- 02 Aug, 2013 2 commits
-
-
Julien Muchembled authored
-
Julien Muchembled authored
-
- 25 Jun, 2013 1 commit
-
-
Julien Muchembled authored
Traceback (most recent call last): File "/opt/re6stnet/re6stnet", line 403, in main tunnel_manager.handlePeerEvent() File "/cygdrive/d/slapos/opt/git/re6stnet/re6st/tunnel.py", line 472, in handlePeerEvent self.sock.sendto('\1' + ''.join(msg), address)
-
- 18 Jun, 2013 2 commits
-
-
Julien Muchembled authored
-
Julien Muchembled authored
This fixes a regression introduced with new protocol to registry (commit e24eb3f5), which can't transport None value.
-
- 11 Jun, 2013 2 commits
-
-
Julien Muchembled authored
-
Julien Muchembled authored
-
- 03 Jun, 2013 2 commits
-
-
Julien Muchembled authored
-
Julien Muchembled authored
-
- 20 May, 2013 1 commit
-
-
Julien Muchembled authored
-
- 13 May, 2013 5 commits
-
-
Julien Muchembled authored
This is a common misconfiguration that may break internet acces for other peers. We also stop checking for child process termination when used without tunnel manager (i.e. with --client or --client-count=0) because it conflicts with the 'ip route' command that is called every minute if --table=0 is used. Anyway, with a tunnel manager, only openvpn client are watched.
-
Julien Muchembled authored
-
Julien Muchembled authored
-
Julien Muchembled authored
- authenticated communications with registered clients - XML-RPC is dropped - multi-threaded server
-
Julien Muchembled authored
-
- 07 May, 2013 1 commit
-
-
Julien Muchembled authored
-
- 23 Apr, 2013 2 commits
-
-
Julien Muchembled authored
-
Julien Muchembled authored
-
- 22 Apr, 2013 2 commits
-
-
Julien Muchembled authored
-
Julien Muchembled authored
-
- 17 Apr, 2013 1 commit
-
-
Julien Muchembled authored
-
- 16 Apr, 2013 1 commit
-
-
Julien Muchembled authored
When a peer advertised several addresses, a node trying to create a tunnel to it never tried any other address than the first one. Before, we wrongly assumed OpenVPN would try all addresses before aborting (--ping-exit). New code reexecutes OpenVPN until all addresses are tried and update the peer db to reorder addresses if the first one failed.
-
- 27 Mar, 2013 1 commit
-
-
Julien Muchembled authored
-
- 25 Mar, 2013 1 commit
-
-
Julien Muchembled authored
-
- 19 Mar, 2013 3 commits
-
-
Julien Muchembled authored
-
Julien Muchembled authored
-
Julien Muchembled authored
-
- 18 Mar, 2013 3 commits
-
-
Julien Muchembled authored
'--ip any' was also broken due to missing parenthesis.
-
Julien Muchembled authored
When 2 nodes were started for the first time whereas: - one of them is in client-only mode, connected to the other one - the registry node is temporarily down then the normal node never tried to rebootstrap or connect directly to the only node it knows (the registry node). Such case required to restart the daemon when the registry is back. Moreover, there was no reason to query the registry node immediately after having open new tunnels to peers found in cache, when this number is less than expected.
-
Julien Muchembled authored
This reduces the probability to lose all connections at the same time when a gateway becomes out-of-order.
-