Create more than one IPv4 Tunnel Network

robina80 · Apr 10, 2018, 10:05 AM

hi all,

can i create more than one IPv4 Tunnel Network on my openvpn server so i can create rules for the openvpn clients?

cheers,
rob

viragomann · Apr 10, 2018, 11:30 AM

You can create multiple vpn server, each with a specific tunnel network. Each has to listen on an unique IP/port combination, of course.
Or you can create client specific overrides for your clients to assign a unique small subnet to each client. This requires SSL authentication.

Both gives you ability to control access of vpn users by firewall rules.

robina80 · Apr 10, 2018, 4:52 PM

so if my server ip tunnel ip is 10.8.0.0/24

can i give my client in the client specific overide an ip 10.8.0.100/32, or does it have to be 10.8.0.100/24, the same as the tunnel server

robina80 · Apr 10, 2018, 9:20 PM

sorted !!!

what i did was create a "client specific override" common name rob and ip 10.100.3.10/24

and this is my rule

https://s31.postimg.org/pxsqg9env/openvpn_rules.png

now i can only talk to 10.100.1.253 which is my switch, if i try 10.100.1.254 which is my router i cannot get access to it

thanks

rob