I've set up openvpn and works very well, but I'd like to define firewall rules by source vpn user and I can only do it by IP. Is there any way to do it by name? For example the "common name" of the vpn user?
Thanks
You could make proxy decisions in Squid based on user name, but you'd have to set it up with authentication (non-transparent).
Other than setting up different VPN servers with different settings, there's no way to distinguish between VPN users.
Bart...
Could I specify a static IP by common name of VPN users?
You can accomplish this with Client specific overrides, assign them a static ip, then create firewall rules on the static ip