-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 12. des. 2013 15:48, Fábio Rabelo wrote: > Hi to all > > I have a system running for over a year using opnevpn to connect > two networks . > > This is all I needed in in the server end : > > /etc/openvon/bridge.conf > > remote 186.231.3.203 dev tap0 secret /etc/openvpn/bridge.key > > And in the client end : > > /etc/openvpn/bridge.conf > > rremote 0.0.0.0 dev tap0 secret /etc/openvpn/bridge.key > > Both system runs Debian Wheezy > > Both systems have a network card configured as bridge . > > Everything works fine ... > > Now I need to create another tunnel to another system, and I just > do not know what to do ! > > I can not find anything in openvpn documentation about a second > bridge in the same server ... > > In fact, anything about the bridge mode are somehow loose and > incomplete in the docs ... > > Please, someone can point me to the right direction ?
Your configuration is based on a peer-to-peer setup. So in this case, it means you need to set up another openvpn daemon on a separate port. The new openvpn server will then need to use tap1, and this device needs to be added to your bridge. But ... a kitten gets badly smashed by speedy network packets each time bridging is used without a good reason. So to save as many kittens as possible (the world, and especially Youtube, needs them badly!) ... please read this wiki article carefully: <https://community.openvpn.net/openvpn/wiki/BridgingAndRouting> I've been around in the OpenVPN community for several years. And I can probably think of 2-3 cases where bridging was the right solution. I'm not saying you don't have a good reason, but from a statistical point of view, you might have it easier using routing. If you rather use a setuup with PKI (that is, using --ca, --cert, - --key and in addition on the server --dh) together with tun and routing, you might get a VPN solution which is easier to manage and performs far better. - -- kind regards, David Sommerseth -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.15 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iEYEARECAAYFAlKqH+EACgkQDC186MBRfrqfpACfXMHdVnFUAeYS0QnZqXKKbupe r9cAoIJTScTNP63h9hCfbA5iK+wi2oWw =47Qy -----END PGP SIGNATURE----- ------------------------------------------------------------------------------ Rapidly troubleshoot problems before they affect your business. Most IT organizations don't have a clear picture of how application performance affects their revenue. With AppDynamics, you get 100% visibility into your Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics Pro! http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
