OpenVPN bridging with only one interface?

Ben Scott dragonhawk at gmail.com
Thu Feb 9 09:39:02 EST 2006


On 2/8/06, Mark Komarinski <mkomarinski at wayga.org> wrote:
> All the examples for OpenVPN that I've seen assume that the OpenVPN
> server is on both the public and private network.

  According to Ye Olde FAQ, this should work.  See:

http://openvpn.net/faq.html#singlenic

  Now, your subject line says "bridging" (i.e., layer 2).  Do you
really mean that, or will a routed network do?  Routing is generally a
better solution, and I suspect bridging with a single interface will
make some things confusing, if not actually broken.

  Now, Neil Joseph Schelly is correct in that putting OpenVPN on your
NAT box would make things conceptually simpler, and the WRT54G should,
in theory, be able to run OpenVPN.  However, crypto is resource
intensive -- especially CPU intensive.  The WRT54G is a fairly bitty
box; trying to use it for that may drag down performance on
everything.

-- Ben



More information about the gnhlug-discuss mailing list