OpenVPN client limitation how to?

  • Hi all
    I have several vlan and when OpenVPN client connected to pfsense, clients can connect to any vlan that have firewall rules!!!
    I want every client can connected to special host on any vlan…
    user1 ==> host1 on vlan1
    user2 ==> host2 on vlan2
    How to i can do it?


  • Rebel Alliance Developer Netgate

    Two ways:

    1. Setup a different CA structure and server for each class of user with different access and filter in the rules based on the tunnel network.

    2. Assign the users static IP addresses using client-specific overrides and then filter on the individual user IPs

  • Thank you  jimp … I will test it....