[colug-432] bridging OpenVPN into my LAN

Jim Wildman jim at rossberry.com
Mon Jul 27 10:36:30 EDT 2015


Use ipv6 instead.  This is exactly the issue that lead me to start 
using ipv6 tunnels.

On Mon, 27 Jul 2015, Rick Troth wrote:

> Started out this note asking about home-grown Cert Auth. Turns out that
> OpenVPN pays attention to client versus server usage tagging in the
> X.509 extensions. That's a GOOD thing, but I had seen so much brokenness
> in PKI land that I ASSumed OpenVPN would be similarly careless. I feel
> so much better now.
>
> Still got a little problem, though.
>
> With the client cert (in the Windoze OpenVPN client) and the server cert
> (in the Linux OpenVPN server, they talk. But I'm having some trouble
> getting the netmask right for may LAN boxes to be reachable from the
> client. The latest go-round I used the example "server 10.8.0.0
> 255.255.255.0" but the client winds up with a /30 netmask rather than
> the expected /24.
>
> Thoughts?
>
> I thought I'd prefer "server-bridge" but failed with that config too.
> (And at the moment I don't remember the details. Have been out of pocket
> for several days.) Ideally I want the simplicity that the Win box sees
> the same servers when mobile as it does when at home.
>
> This was all so easy with PPP over SSH on Linux.
>
> -- R; <><
>
>
>
> _______________________________________________
> colug-432 mailing list
> colug-432 at colug.net
> http://lists.colug.net/mailman/listinfo/colug-432
>

----------------------------------------------------------------------
Jim Wildman, CISSP, RHCE       jim at rossberry.com http://www.rossberry.net
"Society in every state is a blessing, but Government, even in its best
state, is a necessary evil; in its worst state, an intolerable one."
Thomas Paine


More information about the colug-432 mailing list