OPNsense Forum
Archive => 17.7 Legacy Series => Topic started by: jorgevisentini on September 21, 2017, 10:11:48 pm
-
Hello
I set up OpenVPN to listen on all interfaces, so I can use both WAN interfaces.
When I export the settings, I do not have the option to export with all interface settings.
Example:
remote 1.1.1.1 2300 tcp-client
remote 1.1.1.2 2300 tcp-client
The first remote is added, but the second one I need to add manually.
Is there a way to be automatically added when it's Multi-WAN?
Thank you all.
-
Hi there,
Incidentally, we just wrapped up the client OpenVPN for multi-remote:
https://github.com/opnsense/core/issues/952
I can take a look at the server side while there.
Thanks,
Franco
-
I peeked at the code. It assumes WAN if "any" was set.
Do you:
(a) expect a remote statement for every interface in your config (even LAN)
(b) only remote statements for true "wan" interfaces, whatever that may mean
And would you:
(c) keep the selection in the server page as is and just answer (a) / (b), or
(d) instead of any be able to select all listening interfaces individually to make (a) / (b) unambiguous?
Cheers,
Franco
-
I was study the options and verifing in others appliances...
I believe that the option (b) its good, but the option (d) also to be util. If we can select the interface better, if not, only "true wan" its good too.
-
Maybe as a compromise in (b) and (d) if a server is set to "any" we can make the exportable interfaces selectable instead of making the server listen on multiple explicit interfaces?
The reason I see here is compatibility with the "any" option in the future and some setups requiring LAN VPN as well. It's also easier to integrate and has therefore less opportunity for mistakes.
I'll see what we can do. :)
Cheers,
Franco
-
Sure, no problem ;D
Thanks for the feedback!