OpenVPN Client Schedules



  • Hello all. This is my first post here. My apologies in case this topic has been covered. I was unable to find it after searching.

    I have deployed a pfsense box on an old pc for personal use. Eventually I would like to deploy pfsense boxes at my office and satellite offices. Before doing this though, I need to iron out vpn scheduling. I want to create access schedule rules based on user\group, but I have had no luck in figuring it out. Any help would be greatly appreciated!

    ~Nick



  • You can set up schedules in Firewall > Schedules and use it in firewall rules after. But there is no way to apply firewall rules to specific user groups directly.

    A workaround is to set up a separate vpn server for each user group with its own CA and different tunnel networks and use these in rules. Or you can use "client specific overrides" to assign particular clients predefined IP addresses, which can be grouped to small subnets per user group and used in rules.



  • Or you can use "client specific overrides" to assign particular clients predefined IP addresses, which can be grouped to small subnets per user group and used in rules.

    That's what I do.  Assign static IPs to the VPN users and then craft my rules to allow access only to specific resources based on the user's IP.



  • viragomann, I figured I might have to do something along those lines. Thank you for taking the time to respond.


Log in to reply