stellarspace69 at yahoo
Feb 28, 2009, 4:53 PM
Post #6 of 9
(5419 views)
Permalink
|
So I implemented your idea using 'tracert -d -h 1 <vpngateway>' and it falls back to the original method if that method fails. This is in 0.6.16. Maybe I've oversimplified it, but it's another one of those things that "works for me".
I'm not exactly sure how I would go about verifying that the device is setup correctly? What exactly do you mean by that? It has an IP? DNS?
________________________________
From: Tilman Schröder <tilman.schroeder [at] tu-dortmund>
To: vpnc list to send bug reports and discussions with developers <vpnc-devel [at] unix-ag>
Sent: Saturday, February 28, 2009 4:51:30 AM
Subject: Re: [vpnc-devel] VPNC Front End
Heyho,
you partly implemented the fixes, which are:
- Query "route print" for the route to 0.0.0.0 instead of looking for
"Default route" which only works for windows in english.
- however, looking at "route print 0.0.0.0" is still not a good idea
because this may not be the right route or the shortest way to the vpn
gateway. On linux, it is done by "ip route get <vpn-gateway-ip-address>"
which prints out the correct route. we need a similar program for
windows or a script that does this by looking at the whole routing
table. more at
http://lists.unix-ag.uni-kl.de/pipermail/vpnc-devel/2009-February/002979.html
- your script does not delete the wins and dns entries of the vpn tap device
- your script does not delete the routes set up at the connect stage
- it was necessary for me to set up the route to the vpn gateway at the
pre-init stage, otherwise vpnc was not able to establish the connection.
if it works for you, fine. I think it is the safest to set up this route
as early as possible, so you might consider changing this in your script
I did not test your frontend yet, I just looked at your vpnc-script.au3
I appreciate your sleep command before adding the routes, however, there
should be a command to check whether the device is set up correctly
before adding routes.
Hang in there,
Tilman
Joshua Bahnsen schrieb:
> What are the specific Vista and x64 fixes? You may not need them, vpnc works fine on Vista.
>
> The cygwin DLL is modified to use an alternate registry location, the front end relies on this registry location to function, you would then need to ensure those registry keys exist. Probably more work than it is worth. You should be able to just drop your vpnc.exe in the same directory, assuming you aren't linked against any further DLLs. I do not use the jscript file, I have implemented its functionality in an AutoIt script which has been compiled into an exe. I'm not a big fan of jscript.
>
> What does the output of vpnc look like during this two phase challenge? It should be easy to implement.
>
>
>
>
> ________________________________
> From: wayne chan <waynechan [at] yahoo>
> To: vpnc list to send bug reports and discussions with developers <vpnc-devel [at] unix-ag>
> Sent: Thursday, February 26, 2009 10:30:32 PM
> Subject: Re: [vpnc-devel] VPNC Front End
>
>
> joshua, i downloaded your vpnc front-end and tested a bit on my Vista system.
> i have few questions about how to use your vpnc front-end to work with the
> my own copy of vpnc. This is my custom built vpnc with some Vista/x64 fixes.
>
> I noticed from your tarball, the bin directory has your copy of vpnc.exe and sh.exe
> along with your other *.dll files. If i want to use my own compiled vpnc.exe
> and vpnc-script-win.js is that all i need to do is to replace those files with my own ??
>
> Also my authentication requires 2-phase challenges..i.e. i need to provide 2 auth-challenges
> in sequence... While your GUI front-end only prompts for the first challenge but didn't
> prompts again when the 2nd challenge was requested by my Cisco vpn server...
> (i have Xauth Interactive set in my default.conf to have it working when doing command
> line connection). Is this something you can modify to address this 2-phase auth-challenge ??
>
> thanks...
>
> wayne chan
>
>
>
>
>
> ________________________________
> From: Joshua Bahnsen <stellarspace69 [at] yahoo>
> To: vpnc-devel [at] unix-ag
> Sent: Friday, February 20, 2009 11:15:42 PM
> Subject: [vpnc-devel] VPNC Front End
>
>
> I created an open source VPNC Front End for Windows, it is currently hosted on Sourceforge. I'm sending an email to this list because I want to make sure I'm not stepping on any toes. I have not modified any of the vpnc sources, they are just compiled with cygwin. I am providing in an installer the required cygwin libraries:
>
> cyggcrypt-11.dll
> cyggpg-error-0.dll
> cygiconv-2.dll
> cygintl-8.dll
> cygwin1.dll
>
> I modified the source of cygwin so I do not interfere with other cygwin applications. It will load in an entirely separate memory space and it uses an alternate registry location.
>
> I also provide the TAP drivers provided by OpenVPN.
>
> I'm in the process of setting up the Sourceforge site below, but the main sources and the installer are there.
>
> I know there are probably quite a few people out there looking for something like this.
>
> https://sourceforge.net/project/showfiles.php?group_id=252530
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> vpnc-devel mailing list
> vpnc-devel [at] unix-ag
> https://lists.unix-ag.uni-kl.de/mailman/listinfo/vpnc-devel
> http://www.unix-ag.uni-kl.de/~massar/vpnc/
_______________________________________________
vpnc-devel mailing list
vpnc-devel [at] unix-ag
https://lists.unix-ag.uni-kl.de/mailman/listinfo/vpnc-devel
http://www.unix-ag.uni-kl.de/~massar/vpnc/
|
