Re: [Openvpn-users] On Access policies

2020-08-27 Thread David Sommerseth
On 31/07/2020 22:53, Alex K wrote: > > > On Fri, Jul 31, 2020, 08:39 Gert Doering > wrote: > > Hi, > > On Thu, Jul 30, 2020 at 11:33:45PM +0300, Alex K wrote: > > On Wed, Jul 29, 2020, 07:57 Peter Fraser > wrote: >

Re: [Openvpn-users] On Access policies

2020-07-31 Thread Alex K
On Fri, Jul 31, 2020, 08:39 Gert Doering wrote: > Hi, > > On Thu, Jul 30, 2020 at 11:33:45PM +0300, Alex K wrote: > > On Wed, Jul 29, 2020, 07:57 Peter Fraser > wrote: > > > I set up my OpenVPN Server for IT access but now everyone seems to love > > > and I have to be allowing more and more pers

Re: [Openvpn-users] On Access policies

2020-07-30 Thread Gert Doering
Hi, On Thu, Jul 30, 2020 at 11:33:45PM +0300, Alex K wrote: > On Wed, Jul 29, 2020, 07:57 Peter Fraser wrote: > > I set up my OpenVPN Server for IT access but now everyone seems to love > > and I have to be allowing more and more persons. I wonder, is there a way > > to prevent one user from acce

Re: [Openvpn-users] On Access policies

2020-07-30 Thread tincanteksup
Use your imagination .. Routing is a path to a goal .. there are many paths. On 31/07/2020 01:44, Joe Patterson wrote: That's only works as far as you trust your users not to violate policy (which, generally speaking, you shouldn't). There's nothing stopping them from adding "route" statements

Re: [Openvpn-users] On Access policies

2020-07-30 Thread Joe Patterson
That's only works as far as you trust your users not to violate policy (which, generally speaking, you shouldn't). There's nothing stopping them from adding "route" statements to their own config files. Anything you can push, the user can add without it being pushed. Well, except ifconfig push, wh

Re: [Openvpn-users] On Access policies

2020-07-30 Thread Alex K
On Wed, Jul 29, 2020, 07:57 Peter Fraser wrote: > HI All > > I set up my OpenVPN Server for IT access but now everyone seems to love > and I have to be allowing more and more persons. I wonder, is there a way > to prevent one user from accessing a particular route that is listed in the > global c

Re: [Openvpn-users] On Access policies

2020-07-29 Thread Jan Just Keijser
Hi, On 29/07/20 06:55, Peter Fraser wrote: HI All I set up my OpenVPN Server for IT access but now everyone seems to love and I have to be allowing more and more persons. I wonder, is there a way to prevent one user from accessing a particular route that is listed in the global config file.

[Openvpn-users] On Access policies

2020-07-28 Thread Peter Fraser
HI AllI set up my OpenVPN Server for IT access but now everyone seems to love and I have to be allowing more and more persons. I wonder, is there a way to prevent one user from accessing a particular route that is listed in the global config file. I have only seen how to the opposite, that is, allo