Page MenuHomePhabricator

Using the 10.255.255.0/24 subnet on other interfaces breaks L2TP/IPSec
Open, NormalPublicBUG

Description

Using a standard L2TP config from the wiki, if you have any IP on other interfaces in the 10.255.255.0/24 subnet, the VPN will fail to route on new connections.

In my case, I had it on loopback for OSPF priority:

set interfaces loopback lo address 10.255.255.1/24

The /32 (which is what I meant to put), makes it work, but other subnet sizes don't

set interfaces loopback lo address 10.255.255.1/32

Details

Difficulty level
Unknown (require assessment)
Version
1.2.0-rc5
Why the issue appeared?
Will be filled on close

Event Timeline

kroy created this task.Nov 1 2018, 10:59 PM
kroy updated the task description. (Show Details)Nov 1 2018, 11:07 PM
syncer assigned this task to dmbaturin.
syncer triaged this task as Normal priority.
pasik added a subscriber: pasik.Mar 12 2019, 6:09 PM