Hi, On Wed, Apr 27, 2016 at 10:02:11AM -0700, Scott Crooks wrote: > Would be to have a script that did the following: > > - First pulled firewall rules from LDAP, and placed them in the > `client-config-dir` as a file so that the routes are pushed dynamically to > each client > - Secondly, used `learn-address` to process those same firewall rules > using iptables on the server side > > It seems that the only way to dynamically push routes to clients is the > client config directory. Is that right? Did I miss something?
--client-connect scripts can create config on-the-fly, and that's the
approach I'd do to set up iptables plus per-client-config from LDAP.
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany g...@greenie.muc.de
fax: +49-89-35655025 g...@net.informatik.tu-muenchen.de
signature.asc
Description: PGP signature
------------------------------------------------------------------------------ Find and fix application performance issues faster with Applications Manager Applications Manager provides deep performance insights into multiple tiers of your business applications. It resolves application problems quickly and reduces your MTTR. Get your free trial! https://ad.doubleclick.net/ddm/clk/302982198;130105516;z
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
