Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Multiple Site-to-Site Question about ports

    Scheduled Pinned Locked Moved OpenVPN
    5 Posts 2 Posters 2.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • P
      Pichi
      last edited by

      Hello,

      I have a functioning site-to-site OpenVPN with the server running embedded version 1.0.1 and the client using embedded version 1.2-RC2. I would like to add an additional site-to-site and I have some questions:

      1. Do I need to use another port for the new client (currently using tcp 1194) on the server?
      2. Even if I dont have to use a second port, is it a better idea to do it anyway?

      Thanks,

      P.

      1 Reply Last reply Reply Quote 0
      • GruensFroeschliG
        GruensFroeschli
        last edited by

        Currently you need different ports for different connections.
        –> http://devwiki.pfsense.org/OpenVPNWishlist

        But you could setup a PKI with a single server.

        We do what we must, because we can.

        Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html

        1 Reply Last reply Reply Quote 0
        • P
          Pichi
          last edited by

          Thanks for your reply, but I dont understand what you mean by single server and PKI.

          can you explain a little please?

          Thank you,

          P.

          1 Reply Last reply Reply Quote 0
          • GruensFroeschliG
            GruensFroeschli
            last edited by

            PKI = Public key Infrastructure.

            I assume you are using shared keys.
            With a PKI you use a server key, and multiple client keys (and certificates).
            Like this multiple clients can connect to single server.
            In your case the clients would be other sites which connect to the mainoffice.

            We do what we must, because we can.

            Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html

            1 Reply Last reply Reply Quote 0
            • P
              Pichi
              last edited by

              OK, I understand now. Thanks for your help I appreciate it ;D

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.