From 9bfa57b39b9c800d9d9955df9f11bc1966da735c Mon Sep 17 00:00:00 2001
From: jim-p <jimp@pfsense.org>
Date: Mon, 25 Feb 2013 15:19:06 -0500
Subject: Always clear the OpenVPN route when using shared key, no matter what
 the tunnel network "CIDR" is set to, it still needs it.

---
 etc/inc/openvpn.inc | 19 +++++++++++++------
 1 file changed, 13 insertions(+), 6 deletions(-)

(limited to 'etc')

diff --git a/etc/inc/openvpn.inc b/etc/inc/openvpn.inc
index ac960ba..1894d64 100644
--- a/etc/inc/openvpn.inc
+++ b/etc/inc/openvpn.inc
@@ -1034,17 +1034,24 @@ function openvpn_clear_route($mode, $settings) {
 		return;
 	list($ip, $cidr) = explode('/', $settings['tunnel_network']);
 	$mask = gen_subnet_mask($cidr);
+	$clear_route = false;
+
 	switch($settings['mode']) {
+		case 'shared_key':
+			$clear_route = true;
+			break;
 		case 'p2p_tls':
 		case 'p2p_shared_key':
-		case 'shared_key':
-			if (!empty($ip) && !empty($mask) && ($cidr == 30)) {
-				list($ip1, $ip2) = openvpn_get_interface_ip($ip, $mask);
-				$ip_to_clear = ($mode == "server") ? $ip1 : $ip2;
-				mwexec("/sbin/route -q delete {$ip_to_clear}");
-			}
+			if (!empty($ip) && !empty($mask) && ($cidr == 30))
+				$clear_route = true;
 			break;
 	}
+
+	if ($clear_route) {
+		list($ip1, $ip2) = openvpn_get_interface_ip($ip, $mask);
+		$ip_to_clear = ($mode == "server") ? $ip1 : $ip2;
+		mwexec("/sbin/route -q delete {$ip_to_clear}");
+	}
 }
 
 function openvpn_get_settings($mode, $vpnid) {
-- 
cgit v1.1