Jan Mulders
2006-Apr-20 19:07 UTC
Re: [Openvpn-users] Re: Different default gateway for different clients
Basically, the contents of the files in the client-config directory will be read as well as the main config file, and any rules in the ccd files will override the ones in the main config. For example, in order to give static IPs to certain clients, I have: file: /etc/openvpn/ccd/username ifconfig-push "192.168.0.6 255.255.255.0" Which means that when user ''username'' connects, the lines are applied to them. You can put other things in here - for your case, you''d put in a redirect-gateway line. Hopefully my explanation makes it a little clearer how to practically do what you''re asking :-) Best wishes, Jan> On 20/04/06, Klaus Thielking-Riechert <klaus.thielking-riechert@nefkom.net> > wrote: > > > > > Hi, > > > Den torsdag 20.apr kl. 19:49 skrev Eddie: > > > > >Thank you for your response. Can you point me to any documentation > > >that explains > > >how exactly to accomplish this that perhaps has a sample config > > >file? I''m new to > > >openvpn and I''m struggling to find specifics. > > > > use the regular config files. > > > > Read the howto as well as the manpage on the homepage > > > > yes this a good start. And it is important that you are using > certificates as pre-shared-secrets won''t work for your requirement > (except you want to configure an openvpn server for each client). > > Best regards, > > Klaus > > > > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.1 (GNU/Linux) > > iD8DBQFER9fViPBbndF0mh8RAmWQAJwIubETUDE0QqutHbaIsyobRnnzbwCePoD5 > kmSYZ9scWowUTuBkQBNcYK0> =dmef > -----END PGP SIGNATURE----- > > > >
Tom Eastep
2006-Apr-20 20:50 UTC
Re: Re: [Openvpn-users] Re: Different default gateway for different clients
On Thursday 20 April 2006 12:07, Jan Mulders wrote:> Basically, the contents of the files in the client-config directory will be > read as well as the main config file, and any rules in the ccd files will > override the ones in the main config. For example, in order to give static > IPs to certain clients, I have: > > > file: /etc/openvpn/ccd/username > ifconfig-push "192.168.0.6 255.255.255.0" > > > Which means that when user ''username'' connects, the lines are applied to > them. You can put other things in here - for your case, you''d put in a > redirect-gateway line. > > Hopefully my explanation makes it a little clearer how to practically do > what you''re asking :-) >FWIW, a draft of my LinuxFest 2006 OpenVPN presentation (which I''ll be giving April 29) is available at http://www1.shorewall.net/LinuxFest2006.pdf. Comments and corrections are welcome. The presentation gives examples of the use of CCD. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key