1. Home
  2. pfSense® Software
  3. OpenVPN
  4. Openvpn config client-to-client ?

Openvpn config client-to-client ?

  • F

    Hi, i have a running open vpn server on my pfsense box. Problem is that the ping is very high between the client's since all traffic goes through the server. How do i add the –client-to-client argument ? Tried putting it in the advanced option but no result. Is it possible with pfsense version of openvpn ?

    In short i want open vpn configured as hamachi.

    0
  • jimp
    Rebel Alliance Developer Netgate

    client-to-client doesn't do what you're after.

    client-to-client only allows the clients to see each other, it doesn't cause them to send their packets directly.

    From the OpenVPN documentation:

    –client-to-client
                  Because the OpenVPN server mode handles multiple clients through
                  a  single tun or tap interface, it is effectively a router.  The
                  --client-to-client  flag  tells  OpenVPN  to  internally  route
                  client-to-client  traffic  rather than pushing all client-origi-
                  nating traffic to the TUN/TAP interface.

    When this option is used,  each  client  will  "see"  the  other
                  clients  which  are currently connected.  Otherwise, each client
                  will only see the server.  Don't use this option if you want  to
                  firewall tunnel traffic using custom, per-client rules.

    This option is available in pfSense on the remote access VPN server mode as "Inter-client communication"

    0
  • F

    @jimp:

    client-to-client doesn't do what you're after.

    client-to-client only allows the clients to see each other, it doesn't cause them to send their packets directly.

    From the OpenVPN documentation:

    –client-to-client
                  Because the OpenVPN server mode handles multiple clients through
                  a  single tun or tap interface, it is effectively a router.  The
                  --client-to-client  flag  tells  OpenVPN  to  internally  route
                  client-to-client  traffic  rather than pushing all client-origi-
                  nating traffic to the TUN/TAP interface.

    When this option is used,  each  client  will  "see"  the  other
                  clients  which  are currently connected.  Otherwise, each client
                  will only see the server.  Don't use this option if you want  to
                  firewall tunnel traffic using custom, per-client rules.

    This option is available in pfSense on the remote access VPN server mode as "Inter-client communication"

    So basically Openvpn can't do what i'm after ?

    0
  • jimp
    Rebel Alliance Developer Netgate

    Not that I'm aware of, no. Not unless you manually setup a mesh of tunnels.

    You might look into Tinc.

    0
  • F

    @jimp:

    Not that I'm aware of, no. Not unless you manually setup a mesh of tunnels.

    You might look into Tinc.

    I see, i will take a look =).

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy