OpenVPN Configuring client-specific rules and access policies

Introduction

Gargoyle by default uses the same OpenVPN server rules for all VPN clients. For custom per client rules we need to manually edit files in the “ccd” folder. Each time a new client is added via the GUI a config file with the same name is created in the ccd folder. Edit the config file via SSH through putty, WinSCP or other SSH client.

Edit OpenVPN configuration

Client Configuration Directory

/etc/openvpn/ccd/ 

Specific Client Configuration File

/etc/openvpn/ccd/livestream

Example Configuration

ifconfig-push 10.8.0.16 255.255.255.0
iroute 192.168.200.0 255.255.255.0
push "route 192.168.150.0 255.255.255.0 10.8.0.1"
push "redirect-gateway def1"

In this example (push “redirect-gateway def1”) has been added so all VPN traffic is routed through the VPN server.

Example options

push "redirect-gateway def1" # all VPN traffic is routed through the VPN server

push "dhcp-option DNS 192.168.1.1" # Change this to your router's LAN IP Address
openvpn_-_configuring_client-specific_rules_and_access_policies.txt · Last modified: 2018/09/07 19:49 by ispyisail
 
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
Recent changes RSS feed Donate Powered by PHP Valid XHTML 1.0 Valid CSS Driven by DokuWiki