Koozali.org: home of the SME Server

Obsolete Releases => SME 9.x Contribs => Topic started by: smnirosh on February 17, 2016, 09:16:50 AM

Title: Openvpn Bridge-Drop connection
Post by: smnirosh on February 17, 2016, 09:16:50 AM

Buongiorno,
I configured openvpn bridge on sme server 9.0 with a Single Server certificate and client certificate. I have two files saved in openvpn config folder, those are "mechd.ovpn and mechd.p12". I sent this two certificate to all users in the domain to connect to server through openvpn. But sometimes  they say the connection is dropping.
Do i have to create certificate to each and everyone of users?

Title: Re: Openvpn Bridge-Drop connection
Post by: Arnie on February 18, 2016, 01:51:54 AM

Please expand on "the connection is dropping".

Can they authenticate and connect, but then the connection drops later, or are they failing to authenticate?

In my experience (small home network), using the one certificate for every user is not a problem. If you want to maximise security, you could generate and deploy a new cert for each user but it depends on how much admin you want to do.

Title: Re: Openvpn Bridge-Drop connection
Post by: Daniel B. on February 18, 2016, 02:17:09 PM

Quote from: smnirosh on February 17, 2016, 09:16:50 AM

Do i have to create certificate to each and everyone of users?

By default, yes. Look at https://wiki.contribs.org/OpenVPN_Bridge#Advanced_configuration, especially

Code: [Select]

duplicateCN: (enabled|disabled) If you want to allow several clients to connect simultaneously using the same certificate, you need to enable this option (default is disabled)


Title: Re: Openvpn Bridge-Drop connection
Post by: smnirosh on February 18, 2016, 03:22:43 PM

Thanks very much Daniel. I enebled "DuplicateCN" option. it is ok now. NO DROPPING THE CONNECTION. STEADY STILL.
thanks very much again