|
|
It's still pretty much iptables-based for that kind of thing. Personally, with only two classes, I'd take the simplest route: Just run two completely separate VPNs; that way, your iptables rules don't need to be dynamically modified (as would be the case with a learn-address script adding and removing host-specific rules as systems connect and disconnect). ______________________ OpenVPN mailing lists https://lists.sourceforge.net/lists/listinfo/openvpn-users |