I have an openvpn network that is typically used for trusted access to my network, however I would like to connect a client I don't have exclusive management over by providing a signed cert for authentication and setting a static IP via ccd
I do not want this client receiving DNS or routes that my trusted clients receive, and I will Masquerade any traffic to/from this cient as well as firewall rules that restrict inbound access from this IP. How do I maintain my existing default VPN config for 99% of the users and override them for a single host?
Override server push route and DNS for client defined in ccd
Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech
Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
-
grapeCent
- OpenVpn Newbie
- Posts: 3
- Joined: Sat Jan 14, 2023 7:30 am
-
Pippin
- Forum Team
- Posts: 1201
- Joined: Wed Jul 01, 2015 8:03 am
- Location: irc://irc.libera.chat:6697/openvpn
Re: Override server push route and DNS for client defined in ccd
Hi,
Take a look at --push-remove opt in manual 2.5:
https://build.openvpn.net/man/openvpn-2 ... vpn.8.html
.
Take a look at --push-remove opt in manual 2.5:
https://build.openvpn.net/man/openvpn-2 ... vpn.8.html
.
I gloomily came to the ironic conclusion that if you take a highly intelligent person and give them the best possible, elite education, then you will most likely wind up with an academic who is completely impervious to reality.
Halton Arp
Halton Arp
-
grapeCent
- OpenVpn Newbie
- Posts: 3
- Joined: Sat Jan 14, 2023 7:30 am
Re: Override server push route and DNS for client defined in ccd
Awesome, thanks for that documentPippin wrote: ↑Sat Jan 14, 2023 6:44 pmHi,
Take a look at --push-remove opt in manual 2.5:
https://build.openvpn.net/man/openvpn-2 ... vpn.8.html
.