Hi,
I want to grant one client access via VPN to specific local IP only and ensure he's unable to connect to other IPs within my network.
similar to https://openvpn.net/community-resources/configuring-client-specific-rules-and-access-policies/ concept
How can I achieve that using openvpn on merlin? The server1 & server2 are up&running for a longer time, but now I need to ensure separation (e.g. server1 for my own use without limitation and server2 with user access to specific IP(s) only?)
I want to grant one client access via VPN to specific local IP only and ensure he's unable to connect to other IPs within my network.
similar to https://openvpn.net/community-resources/configuring-client-specific-rules-and-access-policies/ concept
| Class | Virtual IP Range | Allowed LAN Access | Common Names |
| Employees | 10.8.0.0/24 | Samba/email server at 10.66.4.4 | [variable] |
| System Administrators | 10.8.1.0/24 | Entire 10.66.4.0/24 subnet | sysadmin1 |
| Contractors | 10.8.2.0/24 | Contractor server at 10.66.4.12 | contractor1, contracter2 |
How can I achieve that using openvpn on merlin? The server1 & server2 are up&running for a longer time, but now I need to ensure separation (e.g. server1 for my own use without limitation and server2 with user access to specific IP(s) only?)
