Make <connection> more flexible for server configuration

conon · Post by **conon** » Sun Jul 06, 2014 3:45 am

I currently run 3 openvpn servers as I need slightly different configurations for
an internal server - tap - 10.0.2.0/24 - Allows Internet.
an external server - tap - 10.0.1.0/24 - Dissallows Internet.
an external server for tun only devices - 10.0.3.0/24 (Android Devices).

I would realy like to run only 1 server using a configuration somthing like -

...
<connection>
dev tap0
up "/etc/openvpn/if-up.sh br0 tap0 1500"
down "/etc/openvpn/if-down.sh br0 tap0"
<connection>
;Internal connections
local 10.0.2.1
lport 1194
push "route-delay 2"
push "redirect-gateway"
</connection>
<connection>
;External connections
local 10.0.1.1
lport 1194
</connection>
</connection>
<connection>
;Tun only connections
dev tun
local 10.0.1.1
lport 1195
topology subnet
push "topology subnet"
server 10.0.3.0 255.255.255.0
client-config-dir ccd
push "route 10.0.1.0 255.255.255.0"
push "route 10.0.2.0 255.255.255.0"
; These currentl do not work - why?
; push "dhcp-option DOMAIN int.domain ext.domain"
; push "dhcp-option DNS 10.0.1.1"
</connection>
...

Thank you