It is currently Thu Sep 21, 2017 7:24 pm

All times are UTC




Post new topic Reply to topic  [ 5 posts ] 
Author Message
 Post subject: OpenVPN MAC
PostPosted: Tue Jul 25, 2017 12:42 pm 

Joined: Sun Feb 21, 2016 10:34 am
Posts: 20
Hi, we have Virtual Hub configured with Virtual DHCP Server enabled. Several OpenVPN connecting clients change IP before DHCP lease time expires (we used standard 7200 seconds lease time as now). Analysing logs we see different OpenVPN Client having same MAC address and we see also same client connecting to VPN server in different moment with different MAC Address. MAC address are of class like CA-BF-1E-42-XX-XX.

Is softether creating these MAC Addresses on behalf of OpenVPN clients ? why we find duplicated MAC address and so different IP before DHCP lease time expires ?

Best regards


Top
 Profile  
Reply with quote  
 Post subject: Re: OpenVPN MAC
PostPosted: Thu Aug 03, 2017 6:18 am 

Joined: Mon Feb 24, 2014 11:03 am
Posts: 2339
SoftEther VPN generate MAC address from machine name, virtual hub name and session unique ID.
https://github.com/SoftEtherVPN/SoftEth ... on.c#L2340

If you want to keep MAC address on client, please use tap mode OpenVPN.


Top
 Profile  
Reply with quote  
 Post subject: Re: OpenVPN MAC
PostPosted: Thu Aug 10, 2017 1:13 pm 

Joined: Sun Feb 21, 2016 10:34 am
Posts: 20
I do not know where, if upper case conversion or hashing, but MAC address in some point is not uniquely assigned to every DIFFERENTE combination of:

machine name
virtual hub name
session unique ID

As we get same MAC for 2 different machine for 2 different sessions on the same virtual hub.

tap is not an option on limited linux set-top box or smartphone...


Top
 Profile  
Reply with quote  
 Post subject: Re: OpenVPN MAC
PostPosted: Thu Sep 07, 2017 7:31 am 

Joined: Mon Feb 24, 2014 11:03 am
Posts: 2339
'machine name' is server's host name.
If the VPN server restarted, MAC address will conflict with previous one.


Top
 Profile  
Reply with quote  
 Post subject: Re: OpenVPN MAC
PostPosted: Thu Sep 14, 2017 7:50 pm 

Joined: Sun Feb 21, 2016 10:34 am
Posts: 20
There are MAC address conflict also if no restart happen, probably session id are not managed to be unique in long time intervals, so if one client disconnect and a new client connect nre client get session id of previous client, and so MAC address. It should be sufficent to manage session id to avoid reuse in shot time intervals or somthing like this


Top
 Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 5 posts ] 

All times are UTC


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group
Return to www.softether.org