I have been banging my head for days about configuring an OPNSENSE 24.7 as my OPENVPN configuration does not apply the "Client Specific Overrides". In particular by creating a new specification for a user, to whom I want to assign a specific IP of class 10.10.0.0./24 in the VPN, using the "IPV4 Tunnel Network" field (as in previous versions) and setting as IP the 10.10.0.40/24, once the client connects it always receives and IP 10.10.0.2 thus omitting my specification.
Where am I going wrong? The server is still configured in "Topology" mode instead of "Dynamic IP" mode.
Pe please can someone help me?
Thank you very much!
Alessandro
Translated with www.DeepL.com/Translator (free version)
Please anyone help me??
If the client doesn't get the stated IP the CSO is probably not applied due to a misconfiguration.
First of all ensure, that the common name in the CSO is matching that one in the client certificate (assuming, the server is in TLS mode).
If you think, that the settings are correct enhance the servers log verbosity level to 4. Then reconnect the client and check the log after.
Maybe you can post it here.