I use CSO already.
Site A has a route entry for the remote site, rest is set by CSO
route 172.16.254.0 255.255.255.0;Site B does not have any routes they are set by CSO
Server has this:
route 172.16.254.0 255.255.255.0 192.168.98.2; route 172.16.0.0 255.255.254.0 192.168.98.3;I need this, to get the packets back to the OpenVPN interface
CSO for Site A on server is this:
iroute 172.16.0.0 255.255.254.0; ifconfig-push 192.168.98.2 255.255.254.0;i need to set static IP's for the route entry in the previous step
CSO for Site B on server is this:
iroute 172.16.254.0 255.255.255.0; push "route 172.16.0.0 255.255.254.0"; ifconfig-push 192.168.98.3 255.255.254.0;reason for the difference of site A and B is that Site A have the Option "don't pull routes enabled". So instead of a push route in CSO, i have the route option on the client directly.
It is working like this.
However, I have the feeling that it should be possible without setting static tunel IP's.
If i use the remote network box, the routes that are added are then pointing all to the same tunnel.
Btw. is there any way to show the learned OpenVPN iroutes. The only way i found was via the logs which is a pain if you miss the correct moment.