Open Vpn Privileges

is there any possibility to gorup vpn users to act like creating different networks under 1 vpn server?
LVL 1
CahitEyAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

hemmiCommented:
Sure! You can run several instances of openvpn using different ports with different setup files and thus different address ranges. On the server you can prevent routing from on address range to the other. That way the two networks will be distinct and have no chance to cross borders.
0
CahitEyAuthor Commented:
wow that is wonderfull do i need to install open vpn more then 1 time or 1 installation is enough for this ?


and i have 2 more question depending on open vpn :

for ex. i get 5 user lisence for company one and 3 user for comapny two

should i be able to get one user's lisence to second company in the future ?

i mean then it will be 4 user lisence for company one and 4 user lisence for company two


second :

do i able to limit bandwith of openvpn ? i have 1 gbit connection on my server and i want to serve only 100 mbit for a company
0
tty2Commented:
What do you mean under "different networks"?
Do you want to allow different clients to be able to "see" each other? Directive "client-to-client".
Do you want to create several subnetworks for vpn users? Run some instances of vpn server, listening on separate ports, with different config files for each instance.
0
INTRODUCING: WatchGuard's New MFA Solution

WatchGuard is proud to announce the launch of AuthPoint, a powerful, yet simple, Cloud-based MFA service designed to eliminate the vulnerabilities that put your data, systems, and users at risk.

CahitEyAuthor Commented:
i want to allow
first company's users to see each other
second company's users to see each other
but any body will not be able to see from first to second

and i do not know how to limit bandwith
thanks
0
hemmiCommented:
1) I don't know, what you mean by: license. openvpn is public! You can have as many clients as you want, duplicate it, copy it, sell it. The license is called GNU General Public License (GPL).
Look at: http://openvpn.net/index.php/open-source.html
2) You only install it once. You can start as many daemons as you want. Each given a different configuration file as a command line option.
3) To my knowledge there is not special bandwidth option within openvpn. However, that is not necessary because you can use linux to do that. But that will take you fairly deep into networking ...
3) I guess you will have to read a little about openvpn first ...
0
CahitEyAuthor Commented:
http://openvpn.net/index.php/access-server/pricing.html
in this page it writes 5$ per client
2) how could i start more deamons ?
3) do you advice me any software for this

4) i am trying to understand the way first then i will check all documents thank you for your help so much
0
QlemoBatchelor, Developer and EE Topic AdvisorCommented:
OpenVPN does not allow for bandwidth limiting. As hemmi told you already, that has to be done in Linux.

Using client-config, you even could define a per-certificate or per-user setting, running on the server, which sets routes on the client, opens firewall ports on the server, uses different IP pools for different users, aso. That would allow to separate the companies or even user groups by using a single OpenVPN instance. However, the configuration could get quite complex.
It is much easier to set up one instance per group, but that requires you to use different ports for each instance. That is, e.g. 1198/udp for company 1, 1199/udp for company 2, aso. You will need to create different server certificates for each instance, to make sure they cannot connect just by guessing the other ports used.
0
CahitEyAuthor Commented:
qLemo that is ok i like this way but i do not know how to create more then one instance
and now i do not understand if open vpn is free then why it is requires a lisence ?
is there any tool for limiting bandwith on linux that you could advice
0
QlemoBatchelor, Developer and EE Topic AdvisorCommented:
Linux is way off my knowledge. I did Unix - a long time ago. So nothing I can tell you about the bandwidth stuff there.

There are commercial packages containing OpenVPN. Those will require licenses, and usually add more services, a GUI, a Linux, or whatsoever as value-added service.
However, if you use the public domain releases, there are no license fees. But you have to more yourself (that is, create the certificate according to the how-to, create config files according to tutorials available anywhere, aso.).

"Several instances" means you run the same process multiple times, but with different config files for each. The config files determine the port, encryption, certificate and many more.
0
tty2Commented:
2) how could i start more deamons ?

/usr/sbin/openvpn --config <configfile1>
/usr/sbin/openvpn --config <configfile2>

3) do you advice me any software for this (bandwidth)

http://lartc.org/howto/
0
CahitEyAuthor Commented:
Thank you tty2 that is so good ,
i just need to know one last thig before start building is this open vpn is free or not
every body telling differently :S
0
QlemoBatchelor, Developer and EE Topic AdvisorCommented:
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
CahitEyAuthor Commented:
what is the difference :S
0
CahitEyAuthor Commented:
thanks
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Linux Distributions

From novice to tech pro — start learning today.