On Thu, Nov 13, 2014 at 11:43 AM, Gert Doering <g...@greenie.muc.de> wrote:
> Hi,
>
> On Thu, Nov 13, 2014 at 12:52:22AM -0800, Mike Morris wrote:
>> This is probably too basic to be easily found with my searches :^)
>>
>> Before installing ovpn community edition as a server, I want to
>> understand what side effects there are. For instance, running ovpn as a
>> client, by default, means all outbound triaffic is routed through the
>> vpn tunnel... even sshd responses. Is the same thing true in server mode?
>>
>> I want to have a VPN service, and still retain the webserver and ssh
>> daemon "as is" on that machine. I just want to know whether I need to
>> figure out how to alter ip tables, etc. to do that, or should that be
>> default behavior?
>
> The VPN *server* will, by default, only tunnel the subnet towards the
> client that is designated for doing so ("--server $network $mask"), and
> send the rest towards its default route.
A common scenario is to have pubic and private interfaces on the
server and only route the private side (and perhaps the connected
private LAN range) through the tunnel, leaving the public
interface/services as-is for direct access.
--
Les Mikesell
lesmikes...@gmail.com
------------------------------------------------------------------------------
Comprehensive Server Monitoring with Site24x7.
Monitor 10 servers for $9/Month.
Get alerted through email, SMS, voice calls or mobile push notifications.
Take corrective actions from your mobile device.
http://pubads.g.doubleclick.net/gampad/clk?id=154624111&iu=/4140/ostg.clktrk
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
