openvpn and multiple host to host like configuration

openvpn and multiple host to host like configuration

Tzafrir Cohen tzafrir at cohens.org.il
Tue Feb 22 13:16:39 IST 2011 

On Tue, Feb 22, 2011 at 12:59:13PM +0200, ik wrote:
> Hello,
> 
> I'm trying to configure openvpn to be a host to host like configuration.
> The reason is simple, because I want to have access to the machine that is
> the "server".
> The problem is, that I have many "clients" that need to be like that.
> 
> How can I have a host to host like approach but with multiple "client" hosts
> ?
> 
> My current "server" side configuration is:
> --------------------------
> dev tun
> ifconfig 172.16.8.1 172.16.8.2

Why do you force that IP address?

# Configure server mode and supply a VPN subnet
# for OpenVPN to draw client addresses from.
# The server will take 10.8.0.1 for itself,
# the rest will be made available to clients.
# Each client will be able to reach the server
# on 10.8.0.1. Comment this line out if you are
# ethernet bridging. See the man page for more info.
server 172.16.8.1 255.255.255.0

> secret /etc/openvpn/static.key
> comp-lzo
> keepalive 10 60
> ping-timer-rem
> persist-tun
> persist-key
> user nobody
> group nobody
> daemon
> ----------------------------
> 
> And my "client" settings is:
> -----------------------------
> remote xxx.xxx.xxx.xxx
> dev tun
> ifconfig 172.16.8.2 172.16.8.1

Again, get the IP address from the server.

> secret /etc/openvpn/static.key
> comp-lzo
> keepalive 10 60
> ping-timer-rem
> persist-tun
> persist-key
> user nobody
> group nobody
> daemon
> -----------------------------


-- 
Tzafrir Cohen         | tzafrir at jabber.org | VIM is
http://tzafrir.org.il |                    | a Mutt's
tzafrir at cohens.org.il |                    |  best
tzafrir at debian.org    |                    | friend

More information about the Linux-il mailing list