Hi, On Fri, Oct 05, 2018 at 12:15:47PM -0400, David Black wrote: > Any way to accomplish the same using openvpn as it exists today? My use case > is that per common name, a /29 subnet of client-side IP addresses are allowed > access to specified network resources on the server side. > At the moment it appears I have to maintain eight non-shared client logins > (common names) for each of these subnets of the larger /24 shared tunnel > subnet, each having a fixed static IP address.
Right now, OpenVPN only handles one pool.
So you could have a pool plus individual --ifconfig-push statements for
"those users that should not use the pool", but you can not have two or
three different pools "for different classes of users".
If you need that, you need to solve it external by means of a
--client-connect script that keeps track of pool usage and generates
appropriate --ifconfig-push statements.
gert
--
"If was one thing all people took for granted, was conviction that if you
feed honest figures into a computer, honest figures come out. Never doubted
it myself till I met a computer with a sense of humor."
Robert A. Heinlein, The Moon is a Harsh Mistress
Gert Doering - Munich, Germany g...@greenie.muc.de
signature.asc
Description: PGP signature
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
