OpenVPN interface assignment
-
In my current setup, I have several OpenVPN clients that are connected to remote servers from a subscription VPN,.
When one specifies an OpenVPN specific interface under VPN -> OpenVPN -> Clients (in my case OPT1) I have noticed that this tends to be less stable than if I leave it as WAN.
Specifically, if I want to get a new IP by restarting the connection, I have to restart the OpenVPN client for that instance twice for it to successfully start. Also, if I want to enable an interface that is currently disabled, the webGUI will throw an error stating that "An IPv4 protocol was selected, but the selected interface has no IPv4 address." Finally, when I look at the OpenVPN status (Status -> OpenVPN), the Local Address is blank.
I am using NAT rules to ensure no spillover between the VPNs. I have noticed no change as to whether or not an interface is selected under the OpenVPN clients (WAN or OPTx).
My question is, do I need to specify an interface under the OpenVPN Client settings? What benefit will I get if I do?
Thanks.
-
The interface used by the firewall to originate this OpenVPN client connection
so typically this would be WAN.
In my case for some Sites it is not directly WAN but some Gateway Group containing different WANs.
I've never thought about switching it to any internal Interface like LAN or OPT...why did you do that? Just leave it as default.-Rico