|
|
> This is all new to me, but it sounds like I can simply assign a second > IP (on a different subnet) to my internal NIC. > Could I then not just use this second subnet for the wireless AP and > all its clients? > Then I would bridge this second IP address on eth1 to the TAP device > IP as I previously described, and those clients that didn't have > openvpn installed and were just using my wireless after cracking WEP > wouldn't be on the bridged network, but on the separate wireless > subnet, and the firewall would drop all packets??? Be careful. You need to bridge your internal NIC's first subnet (the one with 192.168.2.0/24) with the tap+-device, not the subnet assigned to your wireless clients. Jean-Pierre -- Powered by Linux From Scratch - http://schwicky.net/ PGP Key ID: 0xEE6F49B4 - AIM/Jabber: Schwicky - ICQ: 4690141 Nothing is impossible... Everything is relative! ____________________________________________ Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users |