Multi-client vpn

[talis]

Hi.

My friends and I want to create a VPN between us over Internet. We have 3 computers running mainly WinXP (but dual-boot to linux is possible):

Code: Select all

     comp1
       |
   (Internet)
     /   \
comp2     comp3

I'd like all the computers to communicate directly, without using the third one (comp1<->comp2, comp2<->comp3, comp3<->comp1) and to be in one subnet (10.0.0.1, 10.0.0.2, 10.0.0.3).

Is it possible? Which way should I go to accomplish that?

I hope I made myself clear. Thank you in advance.

[krzee]

no, that is not possible because openvpn traffic from 1 client to another ALWAYS travels through the openvpn server
without the limitation of "I'd like all the computers to communicate directly, without using the third one" then its a very easy goal to accomplish.

[talis]

Hello, krzee. Thank you for your reply.

Is it still possible to use 2 VPN's between each computer while keeping them in one subnet? Like this:

Code: Select all

comp1[server] -------- comp2[client]
        \                    |
         \     10.10.10.0    |
          \                  |
         comp3[client] comp3[server]
  

Thank you again.

[krzee]

one subnet, no
the same /24, yes
you can make a ptp setup for each link, in which case
A connects to B
A connects to C
B connects to C

each of these would require a different instance of openvpn, so:
B would run a listening daemon for A to connect to
C would run a listening daemon for A to connect to
C would run a listening daemon for B to connect to

each of these 3 links would only require 2 IP addresses, although all would be using 255.255.255.255 (therefore not in the same subnet as the others).

These are called ptp configs.
in the manual at www.openvpn.net/man-beta there is a section called Examples:
Example 2 does what you need.
Example 3 does it with better security.

[talis]

Thank you very much, I'll give it a try. You really helped me out! Thanks again!