Client options



  • hy i have one openvpn server and 2 clients
    server have in advanced configuration this option:
    push "route 192.168.2.0 255.255.255.0";push "route 192.168.1.0 255.255.255.0"
    and in client settings:
    Enable NetBIOS over TCP/IP

    i want that 1 user to use this settings (i know for that i must do nothing :)
    and secondary user to not have push route options and NetBIOS.
    Can somebody help to do that?
    Thank you!



  • Do a client specific configuration (CSC).

    Just add the routes for the one client and not for the other. The same with NetBIOS.
    For this you must use SSL/TLS because you need the CommonName of the Cert for the CSC.



  • ok, i aheve ssl/tls, but where i found client's X.509 common name?



  • @ichtus:

    ok, i aheve ssl/tls, but where i found client's X.509 common name?

    In pfsense Cert manager - if you created certs there. CommonName is the same as CN



  • if i use the name from CAs not working if i use the name from certificates not working




  • @ichtus:

    if i use the name from CAs not working if i use the name from certificates not working

    Go to certificates -> create a cert (for testing) and scroll down. there you will find the field "Common name". That's it.
    Every cert has a common name.


Log in to reply