|
|
Hi Kevin, Thanks for the explanation. This does clear things up verry well. Now I know what I'm doing and that feels a lot better. It's also good to know that It's possible to get all 100 clients working on one machine due to the 254 subnet. Again thaks fot the detailed explanations. Rgds Edo
Kevin Keane <ingosdlug@xxxxxxxxxx> wrote:
On Fri, 2006-12-01 at 11:28 -0800, scartomail wrote:
> Only my ipp.txt file is updating rather strange.
> The 2 clients that are now connected have an ip-address of 10.8.0.6
> and 10.8.0.10.
> But the ipp.txt file shows the numbers of 10.8.0.4 and 10.8.0.8
> This is
at least consistant and probably "works as designed".
Yes. Actually, 10.8.0.4 and 10.8.0.8 aren't strictly speaking IP
addresses at all, but rather network addresses. In other words, they are
the start address of the subnet that the client will be on. This subnet
has, as you already know, always a subnet mask of 255.255.255.252.
The network 10.8.0.4 actually has four addresses:
10.8.0.4 - the network's address. This is NOT a valid IP address (just
as 192.168.0.0 is not a valid IP address, but rather a network address
that actually describes the network 192.168.0.0 through 192.168.0.255).
10.8.0.5 - valid IP address, and assigned to the OpenVPN server. This
will be the gateway from the client's perspective. You can actually ping
this address if you want to.
10.8.0.6 - valid IP address, assigned to the client. This is the one you
found.
10.8.0.7 - broadcast address for the 10.8.0.4 network. All
TCP/IP
networks always reserve the highest possible IP address in the network
for that purpose.
The same goes for addresses 10.8.0.8 through 10.8.0.11, 10.8.0.12
through 10.8.0.15, and so on.
> There is still one big question though.
> Do I have enough ip-addresses this way?
As you can see, each client will actually need four IP addresses with
this scheme. With a subnet mask of 255.255.255.0, you can squeeze in 62
such subnets (10.8.0.0 and 10.8.0.252 are not valid as networks).
So for 100 clients, you would need one more bit for the host part. Thus,
you need to use a subnet mask of 255.255.254.0
> Is changing my "server" subnetmask settings from 255.255.255.0 to
> 255.255.254.0 in the server.conf file a good idea?
Yes, that should do it.
> Thanks for the help so far anyway.
>
> Rgds Edo
>
>
>
>
>
> Charles Duffy
wrote:
> What is the rest of your server.conf file? Are you perhaps
> using
> duplicate-cn (which will absolutely break
> ifconfig-pool-persist)?
Check out the all-new Yahoo! Mail beta - Fire up a more powerful email and get things done faster.-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users
Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-12/msg00031.html on line 182
Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-12/msg00031.html on line 182
|