Client Specific Overrides File not being created for site to site OpenVPN Tunnel

[williamk]

Hi,

I have created a site to site openvpn tunnel.  It appears that the Client Specific Overrides file is not being created, so my routing is not working properly between the sites.  On the OPNsense box in my server1.conf file I see this line:

client-config-dir /var/etc/openvpn-csc/1

When I go to that directory it is empty.  In the gui  VPN: OpenVPN: Client Specific Overrides I have created an override with all the subnets and what not that should be needed for the VPN.  The common name for the override matches the common name of the client certificate I created for the VPN client under System: Trust: Certificates.

Is there a reason the file is not showing up in the /var/etc/openvpn-csc/1 directory?

[KoS]

The client-config-dir is not used (anymore?) as the client-specific overrides are provided via the client-connect script. See the issue here: https://github.com/opnsense/core/issues/4293

Note: That way the ccd-exclusive option could also not be used as it useless if no client-config-dir config files are being used.