Tweet
Hi,
It seems the last OSX update (15.1.1) cause a problem with the OpenVPN Connect client.
If the client is connected to an ipv4-only network, no problem, the client connect and setup his routes. But if the client is connected on an ipv4/ipv6 network, then the beahvior change :
first, even if the vpn remote is IPV4, the log show the use of a NAT64 address :
Then an error occurs when the ovpn connect client add the route to the remote :
The problem seems to be the repetition of the target interface add the end of the nexthop (%en0%en0)
If the remote is an ipv6 address, same problem happens. for the user, the client seems connected, but there is a lot off "no route to host" message in the OpenVPN Connect log view.
The work arround we found is to disable ipv6 on the interface using the following command :
thanks
Anthony.
It seems the last OSX update (15.1.1) cause a problem with the OpenVPN Connect client.
If the client is connected to an ipv4-only network, no problem, the client connect and setup his routes. But if the client is connected on an ipv4/ipv6 network, then the beahvior change :
first, even if the vpn remote is IPV4, the log show the use of a NAT64 address :
Code:
[Dec 3, 2024, 15:13:34] Connecting to [1.2.3.4]:1194 (64:ff9b::0102:0304) via UDP
Code:
/sbin/route add -net -inet6 64:ff9b::0102:0304 -prefixlen 128 fe80:b::600f:6bff:fe01:ad64%en0%en0 fe80:b::600f:6bff:fe01:ad64%en0%en0: nodename nor servname provided, or not known
If the remote is an ipv6 address, same problem happens. for the user, the client seems connected, but there is a lot off "no route to host" message in the OpenVPN Connect log view.
The work arround we found is to disable ipv6 on the interface using the following command :
Code:
networksetup -setv6off Wi-Fi
thanks
Anthony.
Comment