remote server access
Posted: Fri Jan 21, 2022 4:22 pm
Hello everyone, here is my problem!
I'm in business mode. I installed an openvpn server on a raspberri. I also have a data server with an IP of 192.168.1.254.
my concern is that for some of my collaborators, access to this server is impossible because their own box has this IP. So when they want to access the server's shared directory 192.168.1.254, I get to the box directory (Freebox for example).
What should I add in my conf to override this box?
I'm in business mode. I installed an openvpn server on a raspberri. I also have a data server with an IP of 192.168.1.254.
my concern is that for some of my collaborators, access to this server is impossible because their own box has this IP. So when they want to access the server's shared directory 192.168.1.254, I get to the box directory (Freebox for example).
What should I add in my conf to override this box?
Code: Select all
dev tun
proto tcp
port 1194
ca /etc/openvpn/easy-rsa/pki/ca.crt
cert /etc/openvpn/easy-rsa/pki/issued/raspberrypi_7cf2cfa0-cd85-4762-837f-15adcd142415.crt
key /etc/openvpn/easy-rsa/pki/private/raspberrypi_7cf2cfa0-cd85-4762-837f-15adcd142415.key
dh none
ecdh-curve prime256v1
topology subnet
server 10.8.0.0 255.255.255.0
# Set your primary domain name server address for clients
push "dhcp-option DOMAIN domaine.bruz"
push "dhcp-option DNS 192.168.1.254"
push "block-outside-dns"
# Override the Client default gateway by using 0.0.0.0/1 and
# 128.0.0.0/1 rather than 0.0.0.0/0. This has the benefit of
# overriding but not wiping out the original default gateway.
push "redirect-gateway def1"
client-to-client
client-config-dir /etc/openvpn/ccd
keepalive 15 120
remote-cert-tls client
tls-version-min 1.2
tls-crypt /etc/openvpn/easy-rsa/pki/ta.key
cipher AES-256-CBC
auth SHA256
user openvpn
group openvpn
persist-key
persist-tun
crl-verify /etc/openvpn/crl.pem
status /var/log/openvpn-status.log 20
status-version 3
syslog
verb 3