[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Web openvpn.net

Re: [Openvpn-users] subnet topology / increase /30 range

  • Subject: Re: [Openvpn-users] subnet topology / increase /30 range
  • From: "Ed Russell" <erussell@xxxxxxxxxxxxxxxxxxxxxx>
  • Date: Fri, 25 May 2007 09:55:38 -0400

OK it's working now, thanks again.  My issue was in my original server.conf
I had a statement:


This has been modified to:


Now I can hand out /30's wherever I want in that /16

Now onto iptables to try and make one client be able to pass through to

-----Original Message-----
From: openvpn-users-bounces@xxxxxxxxxxxxxxxxxxxxx
[mailto:openvpn-users-bounces@xxxxxxxxxxxxxxxxxxxxx] On Behalf Of Matt
Sent: Friday, May 25, 2007 8:57 AM
To: Timm Wimmers
Cc: James Tan; [ML] OpenVPN-List
Subject: Re: [Openvpn-users] subnet topology / increase /30 range

You don't need to do that.  Just start assigning /30 from the 2nd
subnet.  The /30's are only used as end points for client and server,
you don't route to them, you route through them so the client and the
server are the only ones that care that you're using them.

For example.  My main subnect is, the /30's are and (broken up as /30's.  Everything works
hunky dorey. No routing problems, no 2nd openvpn service, it just


On 5/24/07, Timm Wimmers <timm@xxxxxxxxx> wrote:
> James Tan schrieb:
> > is there any tutorial to show how to increase the current /30 limit on
> > private addresses given to users?
> I don't know such tutorial, but you can simple manage more than one
> subnet or transfer net.
> One part of your clients can use 10.8.1.x, the next ones can use
> 10.8.2.x and so on. It's simple just run multiple instances of your
> openvpn server with the equivalent config file.
> IMHO that's the point why routing is scalable und bridging is not.
> --
> Timm
OpenVPN mailing lists

Openvpn-users mailing list