|
|
I have different groups of users that I'd like to provide different access to using more specific routes and limiting access to specific ports through iptables. I also have vendors that VPN into us, and I'd like to have the ability to shut down their access until it is specifically requested; it seems that using a one config file for each group of clients would be the best way to do his. However, if I use the same CA system for each instance, users could simply change the port on their client config to access another instance of OVPN which would elevate their privilages. Is it possible to run multiple instances of OpenVPN, each with its own set of client certificates that are allowed access? Would I have to run two CA's and is that even possible? Thanks, Nathan Wood ____________________________________________ Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2005-02/msg00006.html on line 191 Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2005-02/msg00006.html on line 191 |