[SOLVED] VPN clients > internet

[minos]

Hello,

Is there an easy way to give internet to VPN clients ?

The goal is to use Zentyal's internet for VPN clients, 'cause clients can be behind proxies or something else restricting their web surf.

I think of a routing rule...?

Thx!!

[Javier Amor Garcia]

You could advertise the address of a gateway connected to Zentyal. However after that the clients should add manually the default route.

Another way is to use the redirect-gateway feature of openvpn. However this option is not implemented in Zentyal so you will need to change the vpn server configuration file template.

I

[minos]

Thx for answer Javier Amor Garcia

I'll try it soon
Your 1st answer is the easiest way for me for test

You could advertise the address of a gateway connected to Zentyal

The gateway (LAN ip of my FAI router inside my Zentyal's LAN) is configured by default in the Zentyal's Network > Gateway, and Activated button is selected.
I think it's ok, nothing more to do ?

However after that the clients should add manually the default route

I'll try to configure the network config on the client's openvpn network card without dhcp.
Humm, I think openvpn client needs a DNS server... I'll test with Zentyal's IP... why not, I think Zentyal will automatically redirect to the FAI dns server configured in Network > DNS

Will be back soon

[minos]

I'm ok now !
So, to give a "web access" to our vpn clients, you can do it by editing :

/usr/share/ebox/stubs/openvpn/openvpn.conf.mas

and uncomment this line :
;push "redirect-gateway"
will become :
push "redirect-gateway"

then restart openvpn service.

Thx for help!