Hello everyone, @Dajka, when you do a kill, you only kill the tunnel. No traffic goes through, however the user's client still shows as connected. Not a great user experience.
@selva I can't kill the whole client, as I'm doing a duplicate-cn. Hence I had to kill via IP address and port to pinpoint exactly that user. However I have found a secret feature, which it seems you guys weren't aware of. ;-) client-deny 4 0 "Disconnect Now" This works exactly how I wanted it, but I need to test more to be sure. 4 is Client ID and 0 is Peer ID. I *hope* that the combination of the two is always unique despite sharing the same client with multiple users. (duplicate-cn) If I'm mistaken please let me know, Thanks, Houman On Tue, 11 May 2021 at 19:50, Selva Nair <selva.n...@gmail.com> wrote: > On Tue, May 11, 2021 at 2:04 PM tincantech via Openvpn-users > <openvpn-users@lists.sourceforge.net> wrote: > > > > -----BEGIN PGP SIGNED MESSAGE----- > > Hash: SHA256 > > > > Hi, > > > > ‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐ > > On Tuesday, 11 May 2021 15:07, Houman <hou...@gmail.com> wrote: > > > > > Hello, > > > > > > I have been struggling to find a way to disconnect a specific user > from the OpenVPN server. > > > I believe there is one way to kill the user's connection by IP > address/port via the management interface. That's really bad though, > because the user is still connected to the VPN and has no idea about it. > Ideally I should be able to disconnect the user properly, so that the user > can see he is no longer connected to the client. > > > > I seem to remember some discussion about sending messages to the client > on a forced disconnect, even going so far as to present those messages to a > client GUI. > > Is that something which I imagined or is this still under consideration ? > > echo msg support is functional in 2.5 and Windows GUI supports it. But > its only useful for sending messages during connection initiation > (i.e, whenever echo commands can be sent). You cannot push such > messages mid-way through a connection. > > client-kill is the right way to disconnect or restart with optional > advance to next remote. > > Selva >
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
