|
|
> > If I understood you correct you want the usual --redirect-gateway > > behaivior but also remove the route to the local subnet. > > Yes, exactly. > The reason: If I have one of my consultants sitting in an untrusted > network, I want to disrupt /any/ communication with this network > (beside the route needed for the vpn, of course) Another reason: protecting a Wifi LAN. Machine-to-machine communication on the local net should flow through the (local) vpn gateway, not direct as the default subnet route would have take place. Andrew ____________________________________________ Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users |