I think I need to add a static IP address pool of addresses from my GREEN network for OpenVPN clients so that they are true members of the GREEN network when they connect (though I’ve found nothing that actually says this is true.) However, I have some issues with the WUI for Static IP address pools not really working as I think it should do:
- Why is the CIDR value entered as a subnet not handled as RFC-4632 describes? (See the table of page 6 for the correct numbers of addresses/block)
- Why are the Name and Subnet fields READ ONLY after they are populated by clicking the Edit button?
When I entered a subnet of 192.168.42.137/29, which should have 3 bits of unique addresses, [making 6 usable (plus one with all bits on and one off) addresses] and click the Add button, the table shows only TWO addresses available.
OK, I try to Edit the setting, but when the edit version of the form displays, both the Name and Subnet fields are READ ONLY. This is sub-optimal for editing usage. So there is no edit feature.
Sigh. OK, I delete what I entered and try entering 192.168.42.137/28 instead, trying to get the thing to show the correct number of addresses for the CIDR (but I already know that it won’t.) Anyway, this time it adds 192.168.42.128/28 to the table and says there are four possible addresses (instead of the correct number of 14 (or 16)).
So, is this WUI screen broken? If not, why does it work this way and why is there an edit button at all. If so, is there a way to manually enter this information correctly?
And finally, is this what I need in order to have my OpenVPN clients become full members of GREEN?
For anyone interested, there’s a calculator at CIDR Calculator that I used to determine the correct value for the range I want to use and 192.168.42.137/29 works perfectly, bit IPFire won’t take that.