Hi Jason,
On 2015-06-02 at 22:05 Jason Haar wrote:
> In this case using the openvpn tunnel as the default gw should have
> solved the problem - but normal people can't figure that out - so I'd
> like to solve it dynamically at the server end. However, to do that, the
> server would need to know in advance the routing table of the client -
> so that it could do something like "if 10.anything is local, then
> disable split tunnel and push all traffic through openvpn; else do split
> tunnel".
AFAIK, this is not possible, but you have options from my pov:
(1) Deploy 2 OpenVPN configurations to your users - one for split
tunnel and one without (redirect-gw).
(2) For split tunneling push two routes to the clients instead 10/8:
10.0.0.0/9 and 10.128.0.0/9
These two routes have higher precedence than the conflicting
10/8 hotel route.
HTH,
Mathias.
------------------------------------------------------------------------------
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
