Re: [Openvpn-users] Evaluating Openvpn management interface externally via application

Sun, 12 Jun 2016 21:17:27 -0700 

Hi Selva,
Restarting the Openvpn client is the last resort for us.
And modifying client.conf via ConfigParser Lib from python is what I am 
thinking of to achieve this.

Goal here is to change the remote server on the fly.
I'll try with options you suggested.

Abhijit
________________________________
From: Selva Nair [selva.n...@gmail.com]
Sent: Saturday, June 11, 2016 7:13 AM
To: Lamsoge, Abhijit
Cc: openvpn-users@lists.sourceforge.net
Subject: Re: [Openvpn-users] Evaluating Openvpn management interface externally 
via application


On Fri, Jun 10, 2016 at 7:55 AM, Lamsoge, Abhijit 
<abhijit.lams...@harman.com<mailto:abhijit.lams...@harman.com>> wrote:
Although management hold release stops vpn daemon from running further.

It does not seem to work for me beyond that.
As when I do try to change the remote server using

>remote MOD <vpn-server-2> <vpn-port-2>

The server side gives a TLS handshake failure.

I think that is logical, as the client.conf does try to connect with the same 
certificates and keys to the remote server as that of the first VPN server.

I have never tried this, but you could try --management-external-cert to 
provide the cert from management and --management-external-key to sign when 
prompted with >RSA_SIGN. But  --ca or  --ca-path cannot be changed through the 
management.

May I ask what is the real goal here -- why not just restart the client from 
the script with the right options or with a config file created on the fly?

Selva

------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity 
planning reports. https://ad.doubleclick.net/ddm/clk/305295220;132659582;e
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users

Reply via email to