Skip to content
/ OpenVPN-LDAP-MAC-Address-Filter Public

This script will run after post Success auth hook of openVPN Connection from user.

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

pkboe/OpenVPN-LDAP-MAC-Address-Filter

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
README.md
README.md
 
 
openvpn_login_checker.py
openvpn_login_checker.py
 
 

Repository files navigation

OpenVPN Configuration

Client Configuration

Add the following directive in your client configuration file:

push-peer-info

Server Configuration

Add the following directives in your server configuration file:

script-security 2 verb 3 client-connect /etc/openvpn/mac-check.py

User-MAC Address Mapping

Create a file at /etc/openvpn/db.txt where you map each username to a MAC address in the following format:

username-M:A:C:A:D:R:E:S:S pranil.kharche-C4:23:60:FA:CC:1A

When a user connects, their MAC address will be logged under IV_HWADDR. Writing this MAC address in db.txt will grant this user access only from that machine.

Log File Permissions

Run the following command to give the script access to search through the log file:

chmod 664 /var/log/openvpn.log

Python Script

Ensure you have Python 3.6 in your bin folder or create a symlink to it. Then, create the openvpn_login_checker.py script:

About

This script will run after post Success auth hook of openVPN Connection from user.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages