Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
userdoc:tt_openvpn_client_networks [2013/03/15 15:21] abelbeck |
userdoc:tt_openvpn_client_networks [2013/03/15 16:23] abelbeck |
||
---|---|---|---|
Line 5: | Line 5: | ||
Though there are situations where the OpenVPN connecting client has local networks defined, which the OpenVPN server endpoint would like to access. | Though there are situations where the OpenVPN connecting client has local networks defined, which the OpenVPN server endpoint would like to access. | ||
- | !!Note ->!! The additional OpenVPN configuration commands to access client networks is performed only at the OpenVPN server. | + | !!Note ->!! The additional OpenVPN configuration commands |
The best way to describe this configuration is by an example: | The best way to describe this configuration is by an example: | ||
- | ===== Assumptions ===== | + | ===== Example |
For this example, the Server Network IPv4 NetMask is '' | For this example, the Server Network IPv4 NetMask is '' | ||
Line 28: | Line 28: | ||
- | !!Note ->!! It is important to specify the '' | + | !!Note ->!! It is important to specify the '' |
===== OpenVPN CCD File Configuration ===== | ===== OpenVPN CCD File Configuration ===== | ||
Line 38: | Line 38: | ||
iroute 192.168.222.0 255.255.255.0 | iroute 192.168.222.0 255.255.255.0 | ||
- | add the '' | + | add the '' |
After the ccd file is created, it can later be edited via the Edit tab using the web interface, (AstLinux 1.1.1 and later). | After the ccd file is created, it can later be edited via the Edit tab using the web interface, (AstLinux 1.1.1 and later). | ||
Line 49: | Line 49: | ||
!!Tip ->!! The ccd files may be edited without having to restart the OpenVPN server, since every time a client connects matching the CommonName the latest ccd file contents will be used. | !!Tip ->!! The ccd files may be edited without having to restart the OpenVPN server, since every time a client connects matching the CommonName the latest ccd file contents will be used. | ||
- | !!Tip ->!! If a ccd file of '' | + | !!Tip ->!! If a ccd file of '' |
+ | |||
+ | Finally, after all the above steps are completed substituting your network values, restart the OpenVPN Server, the proper routes should be in place when the OpenVPN client connects. | ||
===== Firewall Configuration ===== | ===== Firewall Configuration ===== | ||
Line 57: | Line 60: | ||
{{: | {{: | ||
- | For each endpoint, select which LAN interface | + | For each endpoint, select which LAN interface that is allowed to have access to the VPN tunnel. |
{{: | {{: | ||
- | In this example, at the client endpoint, the 1st LAN Interface has a 192.168.222.1/ | + | In this example, at the client endpoint, the "1st LAN Interface" |