[systemd-devel] F16_64: attempt at OpenVPN server service file
Reindl Harald
h.reindl at thelounge.net
Sat Nov 26 14:17:20 PST 2011
Am 26.11.2011 22:36, schrieb Michael D. Berger:
> I see you use "Restart=always". Do I understand correctly that
> whenever you stop the service it will restart? That is what
> "man systemd.service" says. What if you really want to stop
> it, as I might?
than i type "systemctl stop whatever.service"
Restart is triggered if they process goes away and in
the case of "Always" this happens even if the process
gives back a successfull 0 like after "killall processname"
and yes, if i start a service and the prcoess is not running
i want to get it restarted as long i do not stop it via systemd
> Other than that, I see little difference between yours and mine,
> except for the iptables and network controls. I am suprised that
> you didn't comment on my command "/usr/sbin/setIptVpn <yes|no>"
because i have no idea what this does
> I have a complex iptables that must be changed a little
> depending on whether the vpn is running. The command "setIptVpn"
> runs a sed to takes care of that, and obviously, iptables must be
> restarted whenever that is done.
why?
if the bridge and openvpn are not running the devide does
not exist, so why is there anything to modify in firewall
rules?
> As for restarting the network, that appears to usually (but not
> always) be required whenever the vpn is shutdown. If there is
> another way to get things working after shutting down vpn, I
> would be happy to hear it. I tried ifdown and ifup, but it
> didn't work.
> Did you try to ping google.com after your vpn starts on boot?
> I see no difference between yours and mine that would solve
> that problem. I imagine that another dependency is required.
i am not sure what excatly you are doing with openvpn
in my case i connect to the company network and all traffic to
company-LÖAN-IPs goes thorugh the tunnel, BUT all other traffic
does NOT use openvpn because why in the world i should route
public traffic over a vpn-tunnel and from there out in the world?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 262 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freedesktop.org/archives/systemd-devel/attachments/20111126/ed1018bf/attachment.pgp>
More information about the systemd-devel
mailing list