1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Tomato with OpenVPN - how to temporarily block client

Discussion in 'Tomato Firmware' started by Tiansen, Mar 1, 2010.

  1. Tiansen

    Tiansen Addicted to LI Member

    Hello,

    I am using Tomato with OpenVPN with TLS authentication. How can I temporarily reject connection from user with particular key (common name)??

    Thanks!
     
  2. SgtPepperKSU

    SgtPepperKSU Network Guru Member

    If the list of acceptable CommonNames is small enough, you could use the client-specific options table to whitelist certain clients and select "Allow only these clients".

    If you would rather blacklist that particular client, you'll need to manage the client-config-dir manually (see the OpenVPN man-page) and add "disable" to that CommonName.

    This is another interesting idea for a future feature, though (being able to disable a CommonName from the client-specific options table). Right now, not selecting "enable" just leaves out that CommonName entirely, but perhaps it should actively disable it...
     

Share This Page