@fulvio wrote:
You can simulate a second host-to-LAN OpenVPN by activating a LAN-to-LAN one. In this case you could use only X.509 authentication. Kerberos 5 and RADIUS authentication are not possible for L2L VPN. Staring with the release 1.0.beta11 you could use a Preshared Key Authentication.
If you don’t want that the OpenVPN parameter redirect-gateway is pushed to the clients, use the button [Net] (release 1.0.beta10+) to specify the networks you want to reach across the VPN.
Regard
Fulvio
Thank you for your answer. Looks like ZeroShell is not ready to replace my main router, so I must stay with debian there. Never mind, still zeroshell is great project for ordinary use ( Iam a little bit fool with my network infrastructure ) and I am going to use it at intranet wired/wireless routers and PtP links ).