Hi,
On 28 Apr 2016 7:27 p.m., "Ryan Whelan" wrote:
>
> To make sure i'm not completely confused; the current state of this
functionality as it exists in OpenVPN, it is possible to get keying info
out of a server connected to a client (via a shared object plugin).
However, there currently exists n
To make sure i'm not completely confused; the current state of this
functionality as it exists in OpenVPN, it is possible to get keying info
out of a server connected to a client (via a shared object plugin).
However, there currently exists no way to use this information to move a
clients connectio
Hi,
On Thu, Apr 28, 2016 at 06:33:08PM +0200, Jan Just Keijser wrote:
> On 28/04/16 17:24, Gert Doering wrote:
> > On Thu, Apr 28, 2016 at 05:14:13PM +0200, Jan Just Keijser wrote:
> >> And it's the "export keying material" patch that is needed to make that
> >> work.
> > That patch is in master,
On 28/04/16 17:24, Gert Doering wrote:
> Hi,
>
> On Thu, Apr 28, 2016 at 05:14:13PM +0200, Jan Just Keijser wrote:
>> And it's the "export keying material" patch that is needed to make that
>> work.
> That patch is in master, but I totally fail to see how you'd re-import
> the keying material in th
t interface?) Or will it require a
custom plugin to access?
I will defiantly look into this, thank you much!
ryan
>
> JJK
>
>
>
> *From:* Ryan Whelan [mailto:rcwhe...@gmail.com ]
> *Sent:* donderdag 28 april 2016 16:10
> *To:* Jan Just Keijser
> *Cc:* openvpn-users@l
Hi,
On Thu, Apr 28, 2016 at 05:14:13PM +0200, Jan Just Keijser wrote:
> And it's the "export keying material" patch that is needed to make that
> work.
That patch is in master, but I totally fail to see how you'd re-import
the keying material in the destination openvpn process...
gert
--
USENE
sers@lists.sourceforge.net
Subject: Re: [Openvpn-users] Detecting client certificate CN during connection
On 28/04/16 16:26, j.witvl...@mindef.nl<mailto:j.witvl...@mindef.nl> wrote:
Putting a load-spreaders in front of a set of vpn-processes (or even
vpn-servers) is obtainable with basi
; patch that is needed to make that
work.
JJK
*From:*Ryan Whelan [mailto:rcwhe...@gmail.com]
*Sent:* donderdag 28 april 2016 16:10
*To:* Jan Just Keijser
*Cc:* openvpn-users@lists.sourceforge.net
*Subject:* Re: [Openvpn-users] Detecting client certificate CN during
connection
On Thu, Apr 28,
why would you want to involve the CN?
All VPN-clients are equal, but some are more equal than others….
From: Ryan Whelan [mailto:rcwhe...@gmail.com]
Sent: donderdag 28 april 2016 16:10
To: Jan Just Keijser
Cc: openvpn-users@lists.sourceforge.net
Subject: Re: [Openvpn-users] Detecting client
On Thu, Apr 28, 2016 at 3:10 AM, Jan Just Keijser wrote:
> Hi,
>
> On 27/04/16 20:02, Ryan Whelan wrote:
>
>> I may have a need to design a load balancer / demultiplexer that can
>> route in-bound OpenVPN client connections to a specific server based on the
>> clients certificate.
>>
>> If this i
Hi,
On 27/04/16 20:02, Ryan Whelan wrote:
> I may have a need to design a load balancer / demultiplexer that can
> route in-bound OpenVPN client connections to a specific server based
> on the clients certificate.
>
> If this is possible, the setup would be a LB of sorts in front of a
> farm of
I may have a need to design a load balancer / demultiplexer that can route
in-bound OpenVPN client connections to a specific server based on the
clients certificate.
If this is possible, the setup would be a LB of sorts in front of a farm of
OpenVPN servers. This LB would look at the CN in the ce
12 matches
Mail list logo
