Allow one connection per user/cert
Posted: Thu Jan 03, 2019 8:40 am
Greetings,
I've just configured openvpn . its working fine and the only issue I see is if user-1 connected to server via pc and he uses same config-file which has his key/ca/ta/crt into his an other device (mobile/laptop) he gets connected .
All I want this shuould not be connected if user-1 is connected via pc untill he disconnect from pc then he will be able to connect it via mobile/laptop.
I generated invidual crt / key for each users.I.E user-1.crt/user-2.key , user-2.crt/user-2.key , user-3.crt/user-3.key .
Any idea what am I doing wrong here.
Regards
Scorpoin
I've just configured openvpn . its working fine and the only issue I see is if user-1 connected to server via pc and he uses same config-file which has his key/ca/ta/crt into his an other device (mobile/laptop) he gets connected .
All I want this shuould not be connected if user-1 is connected via pc untill he disconnect from pc then he will be able to connect it via mobile/laptop.
I generated invidual crt / key for each users.I.E user-1.crt/user-2.key , user-2.crt/user-2.key , user-3.crt/user-3.key .
Code: Select all
port 51094
proto udp
dev tun
ca /etc/openvpn/ca.crt
cert /etc/openvpn/server.crt
key /etc/openvpn/server.key
dh /etc/openvpn/dh.pem
server 10.10.10.0 255.255.255.0
mode server
push "redirect-gateway def1"
push "dhcp-option DNS 208.67.220.220"
push "dhcp-option DNS 208.67.222.222"
#client-config-dir ccd
#ifconfig-pool-persist ipp.txt
tls-auth ta.key 0 # This file is secret
auth SHA256
key-direction 0
cipher AES-256-CBC
client-to-client
duplicate-cn 0
keepalive 10 120
comp-lzo
user nobody
group nobody
persist-key
persist-tun
auth-nocache
status /var/log/openvpn-status.log
log /var/log//openvpn.log
verb 4
mute 20
Any idea what am I doing wrong here.
Regards
Scorpoin