Multiple OpenVPN instances for dynamic ips
-
Hello,
I would like to know if it is possible to use different OpenVPN instances but restrict one individual user/pass for each instance.
Each client uses dynamic ips, possibly in the same range.
Thank you!
Regards
-
You can setup many OpenVPN "road warrior" servers, each listening on a different port and having a different tunnel subnet and different certificates.
Then if you give the port number and authentication information for each server to just 1 user it will do what you are saying.
Effectively each user will get the same internal IP address because each time they connect, they will be the only connection on that server.Is that what you meant?
And what are you trying to achieve?
-
I would like to use a first instance of OpenVPN to access all services availaible at my office for employees only.
Then I would like a second instance of OpenVPN restricted for only one person who wish to access only one service hosted at my office which will be also used by the first instance of OpenVPN.
That makes sense?
Thank you for the quick reply, really appreciate it!
Btw, I know this can be done by using the server mode : peer to peer (shared key) but I was wondering if we could combine both the shared key with an authentification process.
-
This did it for me :
Marked this in the OpenVPN conf :
Strict User /CN Matching : When authenticating users, enforce a match between common name of the client certificate and the username given at login.