Changeset 2183


Ignore:
Timestamp:
Sep 19, 2012, 3:28:22 PM (7 years ago)
Author:
matthijs
Message:

openvpn: Switch to "subnet" topology.

Previously, the (default) "net30" topology was used, which allocates a
/30 network to every client to work around Windows not supporting a real
point-to-point topology. However, with a the "subnet" topology, each
client gets assigned a single address and configures the complete /24
subnet on its tun device.

This means that OpenVPN clients now need OpenVPN version 2.1 or newer,
but given that it was released nearly three years ago, that should be
ok.

The main advantage of using this topology is probably that the address
assignment is less confusing to novice users: The OpenVPN server gets
one address and each client gets one address.

References: #1180

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/fon/openvpn/files/etc/config/openvpn

    r2181 r2183  
    1212        option dh /etc/openvpn/keys/dh1024.pem
    1313        option crl_verify crl.pem
     14        option topology subnet
    1415        option server "10.8.0.0 255.255.255.0"
    1516        option ifconfig_pool_persist /tmp/ipp.txt
Note: See TracChangeset for help on using the changeset viewer.