Additional user doesn't have the same access



  • Hello

    My OpenVPN server was setup via the wizard. It is using UDP 1194, has TLS auth enabled and is using 10.0.50.0/24 for the tunnel network. I'm using client specific overrides to specify the IP address each user should receive and setup restrictions based off of that. I am using 10.0.50.2/30, and the other user is using 10.0.50.3/30

    The original user account I setup works fine and is able to access machines in the DMZ (192.168.2.0/24) and LAN (192.168.1.0/24) with no issue.

    The other user account, however, is unable to access either of those zones. Originally I thought it may have been a firewall rules issue, but I've made a generic allow all to rule this out and am at a bit of a loss.

    Open VPN Rules:

    DMZ Rules:

    Any help would be greatly appreciated.

    Thanks in advance,
    Kazakus



  • 10.0.50.3 is in the same subnet as 10.0.50.2/30, it's the broadcast address for the first users subnet.
    10.0.50.2/30:
    10.0.50.0 … network
    10.0.50.1 ... server
    10.0.50.2 ... client
    10.0.50.3 ... broadcast

    You may give the second user the next /30 subnet, that's 10.0.50.4/30, so the client will get 10.0.50.6 and the server 10.0.50.5.