I want to deactivate “Redirect-Gateway def1” and add some routes via the “Advanced server options”, but this is only possible when then OpenVPN server is stopped, which is problematic as I am connected via OpenVPN…
Why isn’t it allowed to make configuration changes and then restart the OpenVPN server?
In the current situation, all admins will be working remotely the next days/weeks. I am lucky to already have configured an IPsec connection, but in case other people don’t have that, it will get unnecessary difficult to make OpenVPN changes…
[1]
I’ve build a second OpenVPN behind the main one.
Then connected to this second one, and accessed IPFire in front, stopped its OpenVPN service, did the settings, and restarted it.
[2]
After some time was hard for me to keep 2nd machine just for that so I build at my home another IPfire and created an N2N tunnel with the one from office.
As long as N2N tunnel is up I can reach the Office machine and use SSH to stop OpenVPN process for road warrior, but leave alive the N2N process.
Then I manually edited with nano / vi the OpenVPN cfg files…or simply copy them from my home machine where I did the tests of the new config…
Second option has also another advantage: is the second (and slower) access to Office network - through the N2N… So I also have a backup…
It is not perfect, but at least saved me a couple of times.
Hope it helps!
H&M
openvpnctrl -h
Wrapper for OpenVPN ipfire-2.2.4
openvpnctrl
Valid options are:
-s --start
starts OpenVPN (implicitly creates chains and firewall rules)
-k --kill
kills/stops OpenVPN
-r --restart
restarts OpenVPN (implicitly creates chains and firewall rules)
-sn2n --start-net-2-net
starts all net2net connections
you may pass a connection name to the switch to only start a specific one
-kn2n --kill-net-2-net
kills all net2net connections
you may pass a connection name to the switch to only start a specific one