Sign up with GoogleThe_Unbeliever
Honorary Master
- Joined
- Apr 19, 2005
- Messages
- 103,196
Hi
Managed to get openVPN up and running on Ubuntu. Works quite well and is more stable than Whinydoze PPTP.
Problem is that we're running out of static IP's which to use for openVPN, and I want to set openVPN clients up to use their own subnet (for example 192.168.55.xxx), and route to the company's network (192.168.30.xxx).
This is a single-NIC server as openVPN requests are portforwarded to this PC via port 1195.
Anybody have any pointers on what to do? I will appreciate it a lot.
Regards
Libs
Managed to get openVPN up and running on Ubuntu. Works quite well and is more stable than Whinydoze PPTP.
Problem is that we're running out of static IP's which to use for openVPN, and I want to set openVPN clients up to use their own subnet (for example 192.168.55.xxx), and route to the company's network (192.168.30.xxx).
This is a single-NIC server as openVPN requests are portforwarded to this PC via port 1195.
Code:
mode server
tls-server
local 192.168.30.251 ##ip of server
port 1195 ##default port = 1194, we use 1195
proto udp
##bridging directive
dev tap0 ##if you need multiple tap devices, add them here
up "/etc/openvpn/up.sh br0"
down "/etc/openvpn/down.sh br0"
persist-key
persist-tun
#certificates and encryption
ca ca.crt
cert server.crt
key server.key ## This file should be kept secret
dh dh1024.pem
tls-auth ta.key 0 ## this file is secret
cipher BF-CBC ## Blowfish (default)
comp-lzo
#misc options
#duplicate-cn ## allows the use of duplicate cert names
management 192.168.30.251 5555 pass.txt
#DHCP information
ifconfig-pool-persist ipp.txt
server-bridge 192.168.30.252 255.255.255.0 192.168.30.230 192.168.30.240
push "dhcp-option DNS 192.168.30.1"
push "dhcp-option DOMAIN work.co.za"
max-clients 10 ## only 10 clients at a time
#log and security
user nobody
group nogroup
keepalive 10 120
status openvpn-status.log
verb 3
log-append openvpn.logAnybody have any pointers on what to do? I will appreciate it a lot.
Regards
Libs
