I’ve been playing around with openvpn some more now, trying to get it to behave nicely as a server and a client with the minimum of fuss from a user perspective. Well, the server part it easy- it goes up or not ;)
The client part however is a little more complex … So what I’ve been working on is a set of scripts that mimic baselayout-1.12’s inactive status so that the openvpn daemon can instruct the init script that authentication was successfull and mark it as started. This is great as it means you don’t have to know the ip at the other end and ping it like the old init scripts did. So if you missed that feature, don’t panic it’s coming back :)
It works in a very simple way too, simply by using --up--down <script>--up-delay--up-restart
flags if we’re a client (detected by specific options in the selected config).