I am trying to do something similar as "Including multiple machines on the client side when using a routed VPN (dev tun)" https://openvpn.net/index.php/open-sour ... howto.html
but without having to change the client routing.
Basically I try to re-implement the Astrill http://wiki.astrill.com/index.php/Astri ... PN_Sharing behavior that allows to share the internet connection with other user on the LAN simply by setting the geteway of the LAN users pointing to the windows machine that is the vpn client.
Astrill seems to have modified the openvpn client and does not release the source, which is a breach of the GPL license, any how, they added the option --gateway when they run the openvpn client to enable that sharing. This option does not seem to exist in the original source code.
From what I've seen, there is no difference in the routing table when it's on or off.
The client configuration looks like this:
Code: Select all
client dev tun proto tcp nobind auth-user-pass persist-key persist-tun ca ca.crt cert client.crt key client.key ns-cert-type server key-direction 1 push-peer-info comp-lzo mute 20 reneg-sec 0 mute-replay-warnings
My guess, as I'm not a network expert, is that they are using some sort of NAT forwarding, but HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters IPEnableRouter is at 0 and there is not seems to be a windows native forwarding option on the interface.
Any suggestions ?