1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Tomato with OpenVPN - how to temporarily block client

Discussion in 'Tomato Firmware' started by Tiansen, Mar 1, 2010.

  1. Tiansen

    Tiansen Addicted to LI Member


    I am using Tomato with OpenVPN with TLS authentication. How can I temporarily reject connection from user with particular key (common name)??

  2. SgtPepperKSU

    SgtPepperKSU Network Guru Member

    If the list of acceptable CommonNames is small enough, you could use the client-specific options table to whitelist certain clients and select "Allow only these clients".

    If you would rather blacklist that particular client, you'll need to manage the client-config-dir manually (see the OpenVPN man-page) and add "disable" to that CommonName.

    This is another interesting idea for a future feature, though (being able to disable a CommonName from the client-specific options table). Right now, not selecting "enable" just leaves out that CommonName entirely, but perhaps it should actively disable it...

Share This Page