ez van a openvpn/server.tempate-ben:
# "dev tap" will create an ethernet tunnel.
# Use "dev tap" if you are ethernet bridging.
# If you want to control access policies
# over the VPN, you must create firewall
# rules for the the TUN/TAP interface.
# On non-Windows systems, you can give
# an explicit unit number, such as tun0.
# On Windows, use "dev-node" for this.
# On most systems, the VPN will not function
# unless you partially or fully disable
# the firewall for the TUN/TAP interface.
es ez:
# If enabled, this directive will configure
# all clients to redirect their default
# network gateway through the VPN, causing
# all IP traffic such as web browsing and
# and DNS lookups to go through the VPN
# (The OpenVPN server machine may need to NAT
# the TUN/TAP interface to the internet in
# order for this to work properly).
# CAVEAT: May break client's network config if
# client's local DHCP server packets get routed
# through the tunnel. Solution: make sure
# client's local DHCP server is reachable via
# a more specific route than the default route
# of 0.0.0.0/0.0.0.0.
;push "redirect-gateway"
szerintem ha a redirect-gateway-t nem kapcsolod be, akkor a vpn szerver halozatabol kapsz egy ip cimet, amivel az ottani halozattal tudsz kommunikalni, de a dhcp-t nem onnan kapod, es a kliens dhcp-je sem megy at a tunnelen.
ahol tap-ot csinaltam, ott ugy van, hogy a vpn szerveren a br0-ban benne van az eth0 es a tap0 is, es olyat nem tapasztaltam, hogy a dhcp atment volna.