Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Use Network Aliases in OpenVPN configuration too?

    Development
    2
    2
    877
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R
      robi last edited by

      Guys, do we have any chance to use the Aliases we can create in Firewall > Aliases area, in OpenVPN's configuration at Server or Client Tunnel Settings > IPv4 Local Network/s? I see that these Aliases are used not only in firewall, but also in routing and NAT functions. I wonder why not possible to do the same for OpenVPN.

      There are many complex scenarios when various VPNs are set up and Aliases are used to set up correctly routing and NATting (for example creating an alias containing all the networks of the remote site, in order to handle routing and firewall rules in that direction). It would be very handy to use the Aliases the same way in OpenVPN's own config page.

      Often it happens that a new network appears on one side, it is added to aliases properly everywhere, thus routes, NAT and rules apply automatically to the new network, but it has to be manually added to OpenVPN's Tunnel settings also, which is just a field containing comma separated CIDR values. I'm currently having 26 subnets separated here by commas, it's becoming a pain to overlook and also a serious place to make mistakes - while Aliases would be so much better…

      Any chance to have that?

      1 Reply Last reply Reply Quote 0
      • P
        phil.davis last edited by

        https://redmine.pfsense.org/issues/2668
        I thought about this a long time ago and never did anything about it!
        Someone (me?) should look at it again when the 2.3 code is stable.

        As the Greek philosopher Isosceles used to say, "There are 3 sides to every triangle."
        If I helped you, then help someone else - buy someone a gift from the INF catalog http://secure.inf.org/gifts/usd/

        1 Reply Last reply Reply Quote 0
        • First post
          Last post

        Products

        • Platform Overview
        • TNSR
        • pfSense
        • Appliances

        Services

        • Training
        • Professional Services

        Support

        • Subscription Plans
        • Contact Support
        • Product Lifecycle
        • Documentation

        News

        • Media Coverage
        • Press
        • Events

        Resources

        • Blog
        • FAQ
        • Find a Partner
        • Resource Library
        • Security Information

        Company

        • About Us
        • Careers
        • Partners
        • Contact Us
        • Legal
        Our Mission

        We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

        Subscribe to our Newsletter

        Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

        © 2021 Rubicon Communications, LLC | Privacy Policy