Some help with FreeBSD configuration

[Jzo 0]

Hello all,

 

I'm using a headless FreeBSD box to download torrents with transmission. I've installed openresolv and openvpn and adjusted the opvn file from AirVPN to enable DNS push (https://airvpn.org/topic/9608-how-to-accept-dns-push-on-linux-systems-with-resolvconf/). This seems to work fine, but I would like to ask some help to inspect the output of the command:

netstat -r

it gives me this

Routing tables

Internet:
Destination        Gateway            Flags    Refs      Use  Netif Expire
0.0.0.0/1          10.4.0.1           UGS         0     6541   tun0 =>
default            192.168.31.1       UGS         0      341   nfe0
10.4.0.0           10.4.70.16         US          0        0   tun0
10.4.0.1           link#3             UH          0        4   tun0
10.4.70.16         link#3             UHS         0        0    lo0
localhost.localdom link#2             UH          0      162    lo0
128.0.0.0/1        10.4.0.1           UGS         0     2871   tun0
192.168.31.0       link#1             U           0     6165   nfe0
Thuis.localdomain  link#1             UHS         0      557    lo0
213.152.162.73/32  192.168.31.1       UGS         0     9479   nfe0

The transmission daemon is bound to 0.0.0.0 as far as I know in the settings file (setting.json). I'm not too familiar with routing tables to be honest, but there seems to be one issue still present in this configuration. What I'm seeing here is that when the connection to AirVPN (10.4.0.1) is up than any destination requested (0.0.0.0/1) should end up going through 10.4.0.1 and the tun0 interface (openvpn interface). But if the connection to 10.4.0.1 fails what happens then? Does it route through default and thus through 192.168.31.1 (and interface nfe0) which is the address of the router connected to the WAN and also means there is no anonymous acces to the internet anymore in that case?

 

I would appreciate any thoughts on how to interpret this routing table and if I'm right I would love suggestions how to fix this (I guess scripting something like parsing the output of netstat to grab the IP which goes with tun0 and moving that into the transmission settings file would be the solution?).

 

Thank you!

 

 

Just for reference the output of 

ifconfig

is

nfe0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
        options=82008<VLAN_MTU,WOL_MAGIC,LINKSTATE>
        ether bc:ae:c5:97:93:a4
        inet 192.168.31.107 netmask 0xffffff00 broadcast 192.168.31.255
        inet6 fe80::beae:c5ff:fe97:93a4%nfe0 prefixlen 64 scopeid 0x1
        nd6 options=23<PERFORMNUD,ACCEPT_RTADV,AUTO_LINKLOCAL>
        media: Ethernet autoselect (1000baseT <full-duplex>)
        status: active
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
        options=600003<RXCSUM,TXCSUM,RXCSUM_IPV6,TXCSUM_IPV6>
        inet6 ::1 prefixlen 128
        inet6 fe80::1%lo0 prefixlen 64 scopeid 0x2
        inet 127.0.0.1 netmask 0xff000000
        nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
tun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> metric 0 mtu 1500
        options=80000<LINKSTATE>
        inet6 fe80::beae:c5ff:fe97:93a4%tun0 prefixlen 64 scopeid 0x3
        inet 10.4.70.16 --> 10.4.0.1 netmask 0xffff0000
        nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
        Opened by PID 852