Topic: sme9 and local network issue

[jameswilson]

Hi all
One of my last servers i use at home has an issue i have created
I have had a new phone and wanted to add openvpn routed to it all seemed to fo well but after running

Code: [Select]

db configuration setprop openvpn-routed Network 192.168.79.0/255.255.255.0
i lost smaba access and other things
It looks like the server doesnt think the local ip range is local anymore so I dont have all the services i need etc.
I also cant see where to set this.
I tried adding the lan to the local networks settings but it errors saying it is already considered local

Ive tried modifying things in the admin console but doesnt work. VPN bridge still works though and allows samba etc

[jameswilson]

thinking about it more i may have broken it before that setting change but thats when i noticed.

[jameswilson]

I also notice on reboot I get this

RNETLINK answers: Network is unreachable

This repeats 7 times

[Jean-Philippe Pialasse]

it is more than time to upgrade to SME10.
SME 9 is EOL for years.

smeserver-openvpn-routed has recieved some improvements in SME10 so hard to speak about an unsuspected behaviour onr an EOL system

as you upgrade to SME 10 you might enjiy using the smeserver-wireguard contrib if you need vpn for your phone as the configuration will be much more easier  both on the server and on the phone (qr code).

I might emphasize that the Network property should not be you real SME LAN or any other network accessible to your SME or you will break routing table. This should be a dedicated network that is routed via the contrib to your LAN. only reason to change the default is if you already use this one for something else.

[jameswilson]

I know it has been EOL and that is on me. I have an issue with a website that i cant migrate else all would be on sme 10

however i need to fix this one and i didnt want to just remove the openvpn routed contrib incase that did more harm. Ive learned over the years to stop chnaging when i hit a problem.

If i remove the openvpn routed will it put my routing table back to how it should be?

[Jean-Philippe Pialasse]

this should.
only content of /etc/openvpn/routed you placed and configuration db entry should remain

[jameswilson]

so im going to run

Code: [Select]

yum  remove smeserver-openvpn-routed
and cross fingers?

[jameswilson]

Unfortunatly that hasnt resolved the issue.
THings on the lan are still thought of as not local.

Did the

yum  remove smeserver-openvpn-routed

then reconfigure and reboot

[Jean-Philippe Pialasse]

then you will need to tell more about your server and network configuration. 

[jameswilson]

then you will need to tell more about your server and network configuration.

Thanks JPP
Server gateway with Openvpn bridged and s2s
Did add routed but that has been removed
Other contribs id have to look but webstats, php-scl, and phpki for certs

[Jean-Philippe Pialasse]

and about the network?

[jameswilson]

sorry i dont understand what you want to know?

[Jean-Philippe Pialasse]

well you have network connectivity issue, so if you do not describe your network extensively ( what is on wan side of sme is it a modem or another LAN, what is on LAN side and what is the subnet…  ) you are on you own. 
Also be more precise on what is not working. “THings on the lan are still thought of as not local.” is not specific and is an interpretation, not what you see.

trying to access from lan side of sme to samba i get error x

trying to access from wifi behind another router with another subnet i get http error YYY.

[ReetP]

I know it has been EOL and that is on me. I have an issue with a website that i cant migrate else all would be on sme 10

Said it before, say it again.

See No. 3 in my sig.

You had years to plan migration, and v10 has been out some while.

With any luck we'll have v11 out later next year. What are you going to do then? Still run your entirely unsecure site on v9?
And what happens when Cent 6/v9 repos get killed off  entirely?

Bite the bullet. Upgrade now.

[jameswilson]

See No. 3 in my sig.

Fair enough