|
|
>>>>> "Charles" == Charles Duffy <cduffy@xxxxxxxxxxx> writes: Charles> How about connecting the single tap device to every bridge Charles> but using ebtables rules to block or allow packets from Charles> different clients onto whichever bridge happens to be Charles> appropriate? Can't the peer send you what it wants on the tunnel and spoof another client thus sending packets to the wrong bridged interface? Charles> Even better, though, I'd just run a different OpenVPN Charles> instance for each bridge and give each client a configuration Charles> file that connects them to the port associated with the Charles> OpenVPN instance for their appropriate bridge. That would also be my solution. Sam -- Samuel Tardieu -- sam@xxxxxxxxxxx -- http://www.rfc1149.net/ ____________________________________________ Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users |