OpenVPN Site-to-Site versus Remote Access



  • Hi,

    Is there any difference between a OpenVPN setup for site-to-site, versus a remote-access one?

    (I've always found setting up a VPN incredibly tricky).

    For example, there's an in-built wizard for OpenVPN Remote Access - if I follow this through, can I also use this for site-to-site?

    Regards,
    Victor



  • The GUI provides some adapted setup options for the different server modes.

    In access mode it allows to provide DNS, NTP and NetBIOS, while in site-to-site you can set the remote network to enable OpenVPN to set the route.



  • Hi,

    Does this mean I should setup two different OpenVPN setups - one for remote access, and one for site-to-site?

    Or is it possible to have one double-up for both?

    (Out of the services you mentioned for access mode - I think DNS is the only one we might need, and not even necessarily - for access mode, the main use case is to access the web interface on certain devices for managing them - e.g. printers, or SSH into certain devices - happy to go in via IP address if that makes the VPN setup easier).

    Regards,
    Victor



  • You may also do both with an access server. Look here: https://doc.pfsense.org/index.php/OpenVPN_multi_purpose_single_server

    The routing for the site-to-site can be set by client specific override.


Log in to reply