OpenVPN Support Forum

There will be around a dozen different isolated (no connectivity between them) LANs I need to advise staff how to configure their openvpn client for. Some use Linux and some use Windows. Each openvpn server will have a different CA, so this will require the clients use a different cert (thoough maybe different signings of the same key) for each. I'm sure I can make these servers push the correct route commands to the clients for the IP subnets each server supports (they are all different in RFC1918 space). These servers will be gateway instances in AWS (one per VPC subnet) but I think that should not matter.

So I am looking for a sample client config showing maybe at least two tunnel connections to different servers at the same time, using different keys.

It may be the case that clients will want to route other machines on their LAN into the servers. Either I will have to give them unique subnets (probably 192.168.2XX.0/24) or they will need to set up their own NAT at the client side (so all their connections appear to come from the IP at the tunnel client end).

I'm just looking for sample configs but specific advice may also work.

From that list I picked "OpenVPN 2 Cookbook". It seemed to be the most recent. I researched that. While it clearly states it does cover "server to multiclient", it makes no mention of "client to multiserver" tunnels.

I bet none of these books cover what I need. The reason is one person on IRC finally gave some answers that connected to what I was asking, and concluded openvpn cannot do what I need, and that I will have to go back to plan A and run multiple processes of openvpn.