Mark Rogers wrote:
I guess what I want is for my mail server to be an OpenVPN server (is it client/server?) and for the Windows boxen to connect to the server via whatever method they like. What I need, though, is that each Windows box always gets the same IP address on the VPN, and that different Windows boxes cannot talk to each other through the VPN (as they'd be different client's boxes).
Where do I start, is this quite straightforward?
Yes, it's quite straightforward. "ifconfig-pool-persist FILENAME" in the configuration should mean each Windows box always gets the same IP address on the VPN and I think omitting "client-to-client" will stop them talking to each other. Firewall tun devices if you want to be really sure.
www.openvpn.net is really quite a detailed site and the software's debug output is pretty good too. I've been using it for years.
Hope that helps,