"Client specific overrides" not working

Started by kimono_267, September 06, 2024, 01:49:33 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
September 06, 2024, 01:49:33 PM
I have been banging my head for days about configuring an OPNSENSE 24.7 as my OPENVPN configuration does not apply the "Client Specific Overrides". In particular by creating a new specification for a user, to whom I want to assign a specific IP of class 10.10.0.0./24 in the VPN, using the "IPV4 Tunnel Network" field (as in previous versions) and setting as IP the 10.10.0.40/24, once the client connects it always receives and IP 10.10.0.2 thus omitting my specification.

Where am I going wrong? The server is still configured in "Topology" mode instead of "Dynamic IP" mode.

Pe please can someone help me?

Thank you very much!
Alessandro

Translated with www.DeepL.com/Translator (free version)
September 25, 2024, 02:47:31 PM #1
Please anyone help me??
September 25, 2024, 06:41:03 PM #2
If the client doesn't get the stated IP the CSO is probably not applied due to a misconfiguration.

First of all ensure, that the common name in the CSO is matching that one in the client certificate (assuming, the server is in TLS mode).

If you think, that the settings are correct enhance the servers log verbosity level to 4. Then reconnect the client and check the log after.
Maybe you can post it here.
Print
Go Up Pages1
User actions