Possible? OpenVPN server requiring both certificate- AND password-based login (via Tomato router firmware)

Hi, you can move this topic to server platforms forum if you want.

I tried yesterday to install many different VPN clients and in the end I understood I must have some login information in order to use VPN.

so, after I install OpenVPN, where to find Gateway (I suppose it is IP address, should I write my local IP address or some server address?), CA file, Certificate, key, username and passwor

So I've tried to setup openvpn, I followed some guide but it's stuck att "initialization sequence completed" with no connection and I can't find any working solution... here's the log:

$Sun Sep 23 19:14:32 2012 OpenVPN 2.1.0 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] [MH] [PF_INET6] [eurephia] built on Jul 20 2010

Enter Auth Username:pumpedup Enter Auth Password: Sun Sep 23 19:14:37 20

I want to estable a openVPN connection on one of my computers. But I want to make sure that the connection is secure by filtering everything except for openVPN. Therefore openVPN will be the only way to access the internet.

What would be the best way to do this? iptables?

So I have a vpn service, and can connect manually via cli on my 12.04 server via (as root):

openvpn --config /etc/openvpn/client.conf --ca /etc/openvpn/ca.crt --auth-user-pass /etc/openvpn/password.txt --redirect-gateway def1

I have my password and ca in /etc/openvpn as per the guides, works fine.

But, when I also set up the /etc/default/openvpn file with relevant details, I'm finding tha

I used the easy-rsa/2.0 programs to build server and client certificates for OpenVPN. I copied the client ones to the clients along with ca.crt. All good.

I now need to revoke a client certificate from a stolen laptop. In /usr/share/doc/openvpn/examples/easy-rsa/2.0 there's a revoke script. I've run this successfully and it says "Data Base Updated".

I'm running an up to date 10.04 so not expecting things to work, just wondering if this could be a bug.

Trying to setup an Open VPN connection in Network Manager using Password with Certificates (TLS) option. Now my private key does not have a password however when I look in syslog to see why the connection fails I see the following.

I have an OpenVPN server and I can connect to it just fine but I can not communicate with any other hosts on the network including the server. I can't ping from the server to an OpenVPN client, I can't ping from an OpenVPN client to the OpenVPN server, I can't ping from OpenVPN client to OpenVPN client or from OpenVPN client to normal LAN host and vise-versa.

Adding Two-Factor Authentication To OpenVPN AS With The WiKID Strong Authentication Server Pairing WiKID with two-factor authentication and OpenVPN AS is a great cost-effective solution to secure your network for minimal expense. I downloaded the RPM Version of OpenVPN Access Server and dropped the RPM onto a Centos VM.

I've run into a problem, that I removed certificate files from the server.

But client that has these files still can connect.

I've found out, that I should revoke the certificate and that this can be done by changing line with that certificate in

/etc/openvpn/easy-rsa/keys/index.txt

to have R, not V, as first character line.

But previously I've removed line for that certificate from the f