On Sun, 15 Sep 2002, James Yonan wrote:
> Well actually "Forking server support" is really a misnomer. It would
> be better titled "Server support for arbitrary number of connecting
> clients without requiring a separate config file and a
> pre-instantiated daemon for every client, or just "scalability
> support". xinetd is an interesting idea. Anyone using xinetd with
> OpenVPN?
I tried and failed, and the problem is that openvpn is not prepared to
be run from xinetd -- it would have to take the socket it is passed in,
rather than trying to opening a new one.
Here's how far I got, it would take openvpn to add an --inetd option,
I'll see if I get that done. Note that server_args is a single line.
service openvpn
{
type = UNLISTED
port = 5002
socket_type = dgram
protocol = udp
wait = yes
user = root
server = /usr/local/sbin/openvpn-log
server_args = --user vpn --verb 5 --float --dev tun0 --ifconfig
192.168.0.1 192.168.0.129 --up /service/openvpn/script-up --comp-lzo --mlock
--secret /service/openvpn/openvpn.key --ping 60
}
--
Matthias Andree
