21.4. OpenVPN Override

The OpenVPN Override is only available for the authentication mode Certificate. This functionality can be found once a OpenVPN server has been created and saved. When editing this server the Certificate Settings are displayed at the bottom of the screen. A separate override for each certificate can be configured. The follwing options can be used:

Enabled determines whether this override shall be used or not.

IPv4 Tunnel Network and IPv6 Tunnel Network define the tunnel network for the connection.

Block Connection blocks this client connection based on its certificate common name.

Redirect Gateway can be enabled to force all client generated traffic through the tunnel.

Local Network(s) allows the usage of multiple local networks.

Remote Network(s) allows the usage of multiple remote networks.

Custom Options is for custom configuration parameters for the config.

21.4.1. Multiple Clients with separate Networks

If you want to use an OpenVPN setup for multiple clients where each uses its own separate network, you can use the override to accomplish this. All networks for all clients have to be configured in the OpenVPN server settings at Remote Network(s). Then each client needs to use the override to set their specific network at Remote Network(s).