Raspbian - OpenVPN checking and automatical reconnect

Weekly dev snapshots are available for testing.
We talk about them here. Testing features in the dev snapshot helps the features make it to stable.
Forum rules
Please report your experience with testing branch. Include what you were using and how
If there is a problem, the more info the better!
Post Reply
sunshineh
OpenVpn Newbie
Posts: 1
Joined: Mon Jul 01, 2019 7:38 am

Raspbian - OpenVPN checking and automatical reconnect

Post by sunshineh » Mon Jul 01, 2019 10:55 am

Hi,
OpenVPN is running on my new raspbian installation.
How can I be sure, that it is running correctly and how can the internet traffic be stopped, when the connection is broken? Is there a tool for it?

fdisk
OpenVpn Newbie
Posts: 2
Joined: Fri Feb 23, 2018 9:53 am

Re: Raspbian - OpenVPN checking and automatical reconnect

Post by fdisk » Sat Aug 31, 2019 9:43 pm

This solutions works for me for ages:

1) delete defaultroute on your vpn client machine
2) add static host routes for every single vpn endpoint
Example:

Code: Select all

ip route add your.vpn.server.ip/32 via ip.of.gate.way dev eth0
3) use vpn providers dns with update-resov-conf script to prevent dns leaks

Keep in mind that you are not be able to resolve anything unless you are connected to vpn. To get around this you may need to:
- replace fqhn in openvpn configuration by their according IPs
or:
- edit /etc/hosts and add according entry

This way full internet access is only available while vpn is successfully connected. As soon as vpn is off or fails to connect there will be no access (including DNS) but to hosts having host routes (which are required to connect to tunnel).

JastrebJ21
OpenVpn Newbie
Posts: 3
Joined: Sun Sep 29, 2019 5:12 pm

Re: Raspbian - OpenVPN checking and automatical reconnect

Post by JastrebJ21 » Mon Sep 30, 2019 5:43 am

Okay, thanks for the explanation, this will help me with my home automation network!

josefferencik64@gmail.com
OpenVpn Newbie
Posts: 1
Joined: Mon Nov 15, 2021 12:36 pm

Re: Raspbian - OpenVPN checking and automatical reconnect

Post by josefferencik64@gmail.com » Mon Nov 15, 2021 12:43 pm

fdisk post_ wrote:
Sat Aug 31, 2019 9:43 pm
Tato řešení mi fungují po celé věky:

1) odstranit defaultroute ve vašem vpn klientském počítači 2
) přidat statické trasy hostitele pro každý jednotlivý vpn koncový
bod Příklad:

Code: Select all

ip route add your.vpn.server.ip/32 via ip.of.gate.way dev eth0

3) použijte vpn provider

dns s update-resov-conf skriptem, abyste zabránili únikům dns Mějte na paměti, že nejste schopni nic vyřešit, pokud nejste připojeni k vpn. Abyste to obešli, možná budete muset:
- nahradit fqhn v konfiguraci openvpn jejich podle IPs
nebo:
- editovat /etc/hosts a

přidat podle položky Tímto způsobem je plný přístup k internetu k dispozici pouze při úspěšném připojení vpn. Jakmile je vpn vypnuto nebo se nepřipojí, nebude k němu přístup (včetně DNS), ale k hostitelům, kteří mají hostitelské trasy (které jsou nutné pro připojení k tunelu).

Post Reply