0
I have several VPS's, the office server (static IP, but not listed on any DNS), and 2 road warriors.
All of these machines ultimately want resources on the office server (maybe occassionally road warrior wants something from a VPS).
Is it best to host the OpenVPN server on my office machine, in its own VLAN? Any reason why it would be better to host on a VPS and make the office a client? (My office ISP upstream bandwidth is not always fantastic either).
Does it really matter where the server is hosted?
Is it normal to tunnel all traffic through the server? (spoke to spoke) Is it unwise/painful to configure peer2peer direct after authentication? – user2097818 – 2014-12-11T00:12:32.967
1Yes, this is how openvpn works. You could also connect the 'spokes' directly with another openvpn connection, but that would be separate from the other server. If you want mesh networking, you could take a look at tinc. – Steffan Karger – 2014-12-11T22:05:51.513