OpenVPN with many sites and home users
How am I meant to set up OpenVPN when I have many sites and home users? I have a single server instance in my main office running in remote access mode, at the moment.
Can I use the remote access server for PKI site-to-site clients?
Or must I have a second server instance for the site-to-sites?
Or many instances, one for each site?
I want everyone to be able to route to everyone. I will set up additional direct (mesh) OpenVPN links between some branch sites.
I note the wiki (http://doc.pfsense.org/index.php/OpenVPN_Site-to-Site_PKI_%28SSL%29) says "If you want the client sites to be able to reach each other's networks, you need to check Client-to-Client VPN". But that option doesn't appear on the server for set-to-site VPNs.