Usually, when using a VPN, you can route all client traffic(s) through a VPN tunnel with a exit point on the VPN server. Is there a reverse possibility: to organize an exit point to the WWW on the side of one of the VPN clients?
For example, there is a VPN server server1
(172.16.0.1) and two VPN clients client1
(172.16.0.2) and client2
(172.16.0.3). Is it possible to configure the client1
device in such a way that the ip route add default via 172.16.0.2
can be executed on the client2
device?
I'm interested in whether it is possible to do this, provided that client1
runs on OpenWRT (with OpenVPN client).
And if it is possible, then what settings should I pay attention to on the client1
device?
Updated:
In fact, I am interested in organizing access to multiple subnets on the side of some clients (for some clients, this is not needed). I would like to avoid the need to prescribe routes to dozens of subnets to the openvpn configurations. At best, I would like to shift the writing of routes to OSPF, at worst - to configure routes on routers (i.e. in the routing tables of routers, not in the VPN config). For many reasons, it is impossible to install BGP, so I need to work with what is there. The tap
option is as undesirable as possible.