Client options
-
hy i have one openvpn server and 2 clients
server have in advanced configuration this option:
push "route 192.168.2.0 255.255.255.0";push "route 192.168.1.0 255.255.255.0"
and in client settings:
Enable NetBIOS over TCP/IPi want that 1 user to use this settings (i know for that i must do nothing :)
and secondary user to not have push route options and NetBIOS.
Can somebody help to do that?
Thank you!
-
Do a client specific configuration (CSC).
Just add the routes for the one client and not for the other. The same with NetBIOS.
For this you must use SSL/TLS because you need the CommonName of the Cert for the CSC.
-
ok, i aheve ssl/tls, but where i found client's X.509 common name?
-
ok, i aheve ssl/tls, but where i found client's X.509 common name?
In pfsense Cert manager - if you created certs there. CommonName is the same as CN
-
if i use the name from CAs not working if i use the name from certificates not working
-
if i use the name from CAs not working if i use the name from certificates not working
Go to certificates -> create a cert (for testing) and scroll down. there you will find the field "Common name". That's it.
Every cert has a common name.