VPN connections in NetworkManager have strange behaviour

Axel axel.azerty at laposte.net
Tue May 12 08:27:33 UTC 2009


I have a problem when using NetworkManager to connect to VPN 
connections, on an up to date fedora 11 system.
I previously (ubuntu gutsy) used to connect to a vpnc (VPN Compatible 
Cisco) server with the command line tool.

Using the command line still works with Fedora 11. When I try to switch 
to the NetworkManager builtin VPN manager, I manage to connect to the 
remote VPN server, but no network activity can be made. It s maybe a 
problem with the routes.

When connecting to the VPN with the vpnc command line tool, no specific 
configuration (but the group & user login/password) is defined. No 
specific routing configuration has been made.

192.168.246.254 is the gateway of the LAN.
62.39.X.X is the remote VPN server.

[root at axel-asus axel]# LANG="C" netstat -ren
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use 
Iface
62.39.X.X     192.168.246.254 255.255.255.255 UGH   0      0        0 eth0
192.168.246.0   0.0.0.0         255.255.255.0   U     1      0        0 eth0
192.168.122.0   0.0.0.0         255.255.255.0   U     0      0        0 
virbr0
0.0.0.0         0.0.0.0         0.0.0.0         U     0      0        0 tun0

The tun0 adapter address becomes 10.240.200.10/255.255.255.255
I manage to access to remote hosts (10.240.0.0/16 range). In other 
words, out-of-the-box vpnc tool works well.


When connecting with the NetworkManager, the routing table is different :

[root at axel-asus axel]# LANG="C" netstat -ren
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use 
Iface
62.39.X.X  192.168.246.254 255.255.255.255 UGH   0      0        0 eth0
192.168.246.0   0.0.0.0         255.255.255.0   U     1      0        0 eth0
10.240.200.0    0.0.0.0         255.255.255.0   U     0      0        0 tun0
192.168.122.0   0.0.0.0         255.255.255.0   U     0      0        0 
virbr0
0.0.0.0         0.0.0.0         0.0.0.0         U     0      0        0 tun0

And the netmask of the tun0 adapter is different too : 
10.240.200.10/255.255.255.0

And I cannot access 10.240.0.0/16 hosts.

"ignore the routes" option is unchecked, "only use the connection for 
same network resource" option is unchecked, both in "IPv4 Settings" tab, 
"Routes" button. I tried to check them, both, and only one, without 
successful result, though the routing table is different for each setting.


So is there something wrong in my NetworkManager settings ?

Thanks for your help.




More information about the fedora-test-list mailing list