Community discussions

MikroTik App
  4. RouterOS
  5. General

OVPN wrong netmask

Post Reply
 
User avatar
Edoras
newbie
Topic Author
Posts: 35
Joined: Wed Apr 05, 2006 12:03 am
Location: Prague, Czech rep.

OVPN wrong netmask

Mon Jan 18, 2021 8:07 pm

I have trouble with OVPN server. When ovpn user connects to the server, in routing table appears:
Code: Select all
ADS  192.0.0.0/8                        <ovpn-jmarek>             1
Why is there prefix /8 ???
I use ROS 6.48 .

interface ovpn-server server print
Code: Select all
enabled: yes
port: 1194
mode: ip
netmask: 24
mac-address: FE:F2:63:8D:BE:4B
...
default-profile: default
...
ppp secret export:
Code: Select all
/ppp secret add local-address=192.168.101.1 name=xxx password=xxx profile=profile-OVPN remote-address=192.168.101.103 routes=192.168.101.1 service=ovpn
ppp profile print
Code: Select all
 0 * name="default" bridge-learning=default use-mpls=default use-compression=default use-encryption=default only-one=default change-tcp-mss=yes use-upnp=default address-list="" on-up="" 
     on-down="" 
 1   name="profile-OVPN" local-address=192.168.101.1 bridge=bridge-OVPN-AMAR bridge-learning=default use-mpls=no use-compression=default use-encryption=default only-one=default 
     change-tcp-mss=default use-upnp=default address-list="" on-up="" on-down=""
ip address print
Code: Select all
 #   ADDRESS            NETWORK         INTERFACE                                                                                            
 0   192.168.10.1/24    192.168.10.0    ether1_olda_lan                                                                                                                                                                   
 7   192.168.10.3/24    192.168.10.0    ether1_olda_lan                                                                                                                                                                  
10 D 192.168.101.1/32   192.168.101.101 <ovpn-omarek>
Top
 
Sob
Forum Guru
Forum Guru
Posts: 9121
Joined: Mon Apr 20, 2009 9:11 pm

Re: OVPN wrong netmask

Tue Jan 19, 2021 2:09 am

The "routes=192.168.101.1" in PPP secret is nonsense, that field is for adding routes to remote subnets behind connected client, so 192.168.101.1 doesn't belong there when it's local address. I wouldn't expect it to add /8 route, but remove it and you'll see if it helps or not.
Top
Post Reply

Who is online

Users browsing this forum: GoogleOther [Bot] and 160 guests
  4. RouterOS
  5. General