Client to client

This forum is for admins who are looking to build or expand their OpenVPN setup.
Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Post Reply
Babolca
OpenVpn Newbie
Posts: 2
Joined: Tue May 12, 2020 12:21 am

Client to client

Post by Babolca » Tue May 12, 2020 12:29 am

Hello im very new to open vpn.

I would like to realize a very simple task. Connect two clients via vpn.
Therefore i installed a server on linode having an open vpn server.
And installed 2 clients.

Added the client-to-client option to the server config.
Im using the same client config file (ovpn).

For me it seems that the clients get the same ip 10.8.0.2.
Naturally on that way i cant try even a ping to the other client.

I would like to have the simpliest solution. (No route the trafic to os layer just keep everythin in openvpn server layer)

Thanks
Szabolcs

Babolca
OpenVpn Newbie
Posts: 2
Joined: Tue May 12, 2020 12:21 am

Re: Client to client

Post by Babolca » Tue May 12, 2020 6:46 am

The server config file is

Server config

local X.X.X.X
port 1194
proto udp
dev tun
ca ca.crt
cert server.crt
key server.key
dh dh.pem
auth SHA512
tls-crypt tc.key
topology subnet
server 10.8.0.0 255.255.255.0
server-ipv6 fddd:1194:1194:1194::/64
push "redirect-gateway def1 ipv6 bypass-dhcp"
ifconfig-pool-persist ipp.txt
push "dhcp-option DNS 139.162.133.5"
push "dhcp-option DNS 139.162.132.5"
push "dhcp-option DNS 139.162.130.5"
keepalive 10 120
cipher AES-256-CBC
user nobody
group nogroup
persist-key
persist-tun
status openvpn-status.log
verb 3
crl-verify crl.pem
explicit-exit-notify
client-to-client


both clients has this config file:
Client config

client
dev tun
proto udp
remote X.X.X.X 1194
resolv-retry infinite
nobind
persist-key
persist-tun
remote-cert-tls server
auth SHA512
cipher AES-256-CBC
ignore-unknown-option block-outside-dns
block-outside-dns
verb 3
<ca>
-----BEGIN CERTIFICATE-----
-.....
Last edited by Pippin on Tue May 12, 2020 9:29 am, edited 1 time in total.
Reason: Formatting

User avatar
TinCanTech
OpenVPN Protagonist
Posts: 7145
Joined: Fri Jun 03, 2016 1:17 pm

Re: Client to client

Post by TinCanTech » Tue May 12, 2020 10:58 am

See --duplicate-cn in the manual.

Also, set --verb 4 and read your server log.

Post Reply