Welcome, Guest. Please login or register.
Did you miss your activation email?
+  pfSense Forum
|-+  pfSense English Support» OpenVPN» OpenVPN - 2 clients with different access rules
Username:
Password:
 
Home Help Search Login Register
 

Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: OpenVPN - 2 clients with different access rules  (Read 724 times)
0 Members and 1 Guest are viewing this topic.
O Van Dho
Newbie
*
Offline Offline

Posts: 1


View Profile
« on: September 23, 2011, 06:11:48 am »
Hi there,

I would like to give two different fw rules to openvpn clients. So I created 2 openVPN servers with the same Peer certificate Authority but different server certificate, on two different port and with two different tunnel network but the same local network.

I will set up different fw rule between the local network and the two tunnel networks.

So Client A will connect on local network and access only server A and client B will be able to access all servers on the same local network.

Unfortunately, I can't find where to associate a client to a particular OpenVPN server. I created several clients but the are all connecting to the first OpenVPN server.

Clients authenticate only using certificate.

Any help very appreciated.

Thank you
O.
Logged
jimp
Administrator
Hero Member
*****
Offline Offline

Posts: 13093



View Profile
« Reply #1 on: September 26, 2011, 12:03:27 pm »
That is in Client-Specific Overrides in the OpenVPN config. Make an entry for each user's certificate CN, give each of them a hardcoded tunnel network (a /30 inside of your larger tunnel network on the vpn), then set your firewall rules accordingly.
Logged
Need help fast? Commercial Support!

Co-Author of pfSense: The Definitive Guide. - Check the Doc Wiki for FAQs.

Do not PM for help!

Donate to the project | My Wish List
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

 

Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Page created in 0.027 seconds with 20 queries.