Dear All
please see below our network configuration
|--------------| |-----------|
Internet 190.x.x.1xx ---|Student SME |-------student network 192.168.1.x ---|Admin SME |---Admin Network 192.168.x.x (OpenVPN on prt:200x)
|--------------| |-----------|
|
|
|----> Wireless via Chili
I would like to connect from the wireless via chili to the admin network with openVPN on port 200x
therefore i did all configuration i think is required, but i noticed that the service of chili does crash when i try to connect to the own internet IP.
/etc/init.d/chilli restart
Shutting down chilli: [FAILED]
Starting chilli: [ OK ]
but if there was no connection to the own external IP address it restarts without problem:
/etc/init.d/chilli restart
Shutting down chilli: [ OK ]
Starting chilli: [ OK ]
when i look in the messages i notice this:
Apr 5 01:11:24 studenten-srv kernel: divert: not allocating divert_blk for non-ethernet device tun0
to be complete:
Apr 5 01:11:00 studenten-srv coova-chilli[18684]: net.c: 33: 13 (Permission denied) ioctl(SIOCSIFFLAGS) failed
Apr 5 01:11:00 studenten-srv chilli: chilli shutdown succeeded
Apr 5 01:11:00 studenten-srv kernel: divert: no divert_blk to free, tun0 not ethernet
Apr 5 01:11:01 studenten-srv coova-chilli[19149]: CoovaChilli(ChilliSpot) 1.0.13. Copyright 2002-2005 Mondru AB. Licensed under GPL. Copyright 2006-2008 David Bird <dbird@acm.org>. Licensed under GPL. See http://coova.org/ for details.
Apr 5 01:11:01 studenten-srv kernel: divert: not allocating divert_blk for non-ethernet device tun0
Apr 5 01:11:01 studenten-srv coova-chilli[19149]: tun.c: 515: TX queue length set to 100
Apr 5 01:11:01 studenten-srv chilli: chilli startup succeeded
Apr 5 01:11:01 studenten-srv udevd[1207]: udev done!
Apr 5 01:11:01 studenten-srv coova-chilli[19149]: chilli.c: 3766: 1 (Operation not permitted) setgid(455) failed while running with gid = 0
Apr 5 01:11:03 studenten-srv coova-chilli[19149]: net.c: 33: 13 (Permission denied) ioctl(SIOCSIFFLAGS) failed
Apr 5 01:11:03 studenten-srv kernel: divert: no divert_blk to free, tun0 not ethernet
Apr 5 01:11:04 studenten-srv chilli: chilli shutdown succeeded
Apr 5 01:11:05 studenten-srv coova-chilli[19264]: CoovaChilli(ChilliSpot) 1.0.13. Copyright 2002-2005 Mondru AB. Licensed under GPL. Copyright 2006-2008 David Bird <dbird@acm.org>. Licensed under GPL. See http://coova.org/ for details.
Apr 5 01:11:05 studenten-srv kernel: divert: not allocating divert_blk for non-ethernet device tun0
Apr 5 01:11:05 studenten-srv coova-chilli[19264]: tun.c: 515: TX queue length set to 100
Apr 5 01:11:05 studenten-srv chilli: chilli startup succeeded
Apr 5 01:11:05 studenten-srv coova-chilli[19264]: chilli.c: 3766: 1 (Operation not permitted) setgid(455) failed while running with gid = 0
Apr 5 01:11:16 studenten-srv coova-chilli[19264]: chilli.c: 2822: New DHCP request from MAC=00-0C-29-84-41-71
Apr 5 01:11:16 studenten-srv coova-chilli[19264]: chilli.c: 2746: Granted MAC=00-0C-29-84-41-71 with IP=10.1.0.47 access without radius auth
Apr 5 01:11:23 studenten-srv coova-chilli[19264]: net.c: 33: 13 (Permission denied) ioctl(SIOCSIFFLAGS) failed
Apr 5 01:11:23 studenten-srv kernel: divert: no divert_blk to free, tun0 not ethernet
Apr 5 01:11:23 studenten-srv chilli: chilli shutdown failed
Apr 5 01:11:24 studenten-srv coova-chilli[19437]: CoovaChilli(ChilliSpot) 1.0.13. Copyright 2002-2005 Mondru AB. Licensed under GPL. Copyright 2006-2008 David Bird <dbird@acm.org>. Licensed under GPL. See http://coova.org/ for details.
Apr 5 01:11:24 studenten-srv kernel: divert: not allocating divert_blk for non-ethernet device tun0
Apr 5 01:11:24 studenten-srv coova-chilli[19437]: tun.c: 515: TX queue length set to 100
Apr 5 01:11:24 studenten-srv chilli: chilli startup succeeded
Apr 5 01:11:24 studenten-srv coova-chilli[19437]: chilli.c: 3766: 1 (Operation not permitted) setgid(455) failed while running with gid = 0
Apr 5 01:11:25 studenten-srv coova-chilli[19437]: chilli.c: 2822: New DHCP request from MAC=00-0C-29-84-41-71
Apr 5 01:11:25 studenten-srv coova-chilli[19437]: chilli.c: 2746: Granted MAC=00-0C-29-84-41-71 with IP=10.1.0.47 access without radius auth
Is my assumption correct that the Chili service does crash on request to the local IP address?
What can be done to change this??
extra information:
db configuration show chilli
chilli=service
AllowedOutgoing=udp:any:200x,tcp:any:200x,tcp:domainname.com:200x,tcp:domainname.com:80,tcp:internetIP:any,udp:domain.com:200x,udp:any:200x
AllowedServices=udp:200x,tcp:200x,200x
TCPPort=3990
WebRequests=direct
access=private
defidletimeout=900
defsessiontimeout=7200
dhcpend=254
dhcpif=eth2
dhcpstart=10
dns1=212.73.209.226
dns2=194.206.120.1
guestAccess=disabled
guestDownLink=400
guestUpLink=64
macallowed=xx:xx:xx:84:41:71
net=10.1.0.0/255.255.255.0
noc2c=enabled
status=enabled
tundev=tun0
uamallowed=
uamsecret=GjL/rvoutZzF6r0MlsKux+keURYfDhReYPJZjkQqHt4yv0XKCZ9eVnSDDWtO4ojMGRjTzp4CC61EH0iW
version via "rpm -q coova-chilli smeserver-coova-chilli"
rpm -q coova-chilli smeserver-coova-chilli
coova-chilli-1.0.13-2.el4.sme
smeserver-coova-chilli-0.2-19.el4.sme