Hello I'm curious about this as well. Doesn't the openvpn server has a built in security mechanism to protect against unwanted ip change from CCD clients?
Let's say the server is assigning me 192.168.77.22: Mon Jan 19 09:36:22 2015 /sbin/ip link set dev tun0 up mtu 1350 Mon Jan 19 09:36:22 2015 /sbin/ip addr add dev tun0 local 192.168.77.22 peer 192.168.77.21 Mon Jan 19 09:36:22 2015 /sbin/ip route add 0.0.0.0/1 via 192.168.77.21 Mon Jan 19 09:36:22 2015 /sbin/ip route add 128.0.0.0/1 via 192.168.77.21 Mon Jan 19 09:36:22 2015 /sbin/ip route add 192.168.77.0/24 via 192.168.77.21 When I try to redo the commands manually and set the ip to 192.168.77.2 to endpoint 192.168.77.1 everything works flawlessly, the routing table looks OK (like it would be with a config which assigns the .2 ip), but no packets go through the interface anymore. Sent: Sunday, January 11, 2015 at 6:44 AM From: Chris <chris2014+open...@postbox.xyz> To: "Gert Doering" <g...@greenie.muc.de> Cc: openvpn-users@lists.sourceforge.net Subject: Re: [Openvpn-users] Mandatory IP address? Hi, On 01/10/2015 10:02 PM, Gert Doering wrote: > --client-config-dir + --ifconfig-push > > will let you assign a IP address of your choice to a given client > > (while technically the client is free to ignore that address and pick > anything, this is what the server will route to this client, so effectively, > it's forcing the address) that's what I was looking for. Thank you! - Chris ------------------------------------------------------------------------------ Dive into the World of Parallel Programming! The Go Parallel Website, sponsored by Intel and developed in partnership with Slashdot Media, is your hub for all things parallel software development, from weekly thought leadership blogs to news, videos, case studies, tutorials and more. Take a look and join the conversation now. http://goparallel.sourceforge.net _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users[https://lists.sourceforge.net/lists/listinfo/openvpn-users] ------------------------------------------------------------------------------ New Year. New Location. New Benefits. New Data Center in Ashburn, VA. GigeNET is offering a free month of service with a new server in Ashburn. Choose from 2 high performing configs, both with 100TB of bandwidth. Higher redundancy.Lower latency.Increased capacity.Completely compliant. http://p.sf.net/sfu/gigenet _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
