OpenVPN restriction

Question

Ive set up an OpenVPN server at my place and handed out a certificate to a client who has an openvpn client at his place.

I need require that he should be able to connect to the vpn server only from one IP address (his current one). How can I do this?

what's the OS - is openvpn running under linux/windows/sth else? — pQd, May 30 '10 at 16:58

score 1 · Answer 1 · answered Jun 28 '10 at 04:22

1

I don't believe OpenVPN has any built-in method to control access based on IP address. You probably will need to use either your border firewall, or the firewall for that host OS to limit access as required.

Personally, I am not sure that it is worth the effort. If you have a good set of keys and HMAC authentication there is very low chance of anyone else being able to get it.

answered Jun 28 '10 at 04:22

Zoredache

128,755
40
271
413

sounds like the client may be using the host as a bridge point for their private net, in which case if the vpnclient is moved to another location, the cert will still be valid, but the host may not be in the appropriate and safe network. – Jimsmithkka Sep 01 '10 at 06:00

OpenVPN restriction

1 Answers1

Linked

Related