The installation script:
wget https://git.io/vpn -O openvpn-install.sh
assumes private IPv6 addresses (fc00::/7, specifically fddd:1194:1194:1194::/64) for VPN clients. In order to make use of IPv6 address-space available to the OpenVPN-server:
Choose an IPv6 range that will be made available to VPN clients. It will be referred to as
If, for instance, you have been assigned an address space of 2a01:aaaa:bbbb:cccc::/64, you may split it and use one block on the host-level (e.g. 2a01:aaaa:bbbb:cccc::/65) and another one on the VPN-level (e.g. 2a01:aaaa:bbbb:cccc:8000::/65).
In the file
protoby adding a trailing
udp6- this makes the server to listen to both, the IPv4 and IPv6
push "redirect-gateway def1 ipv6 bypass-dhcp"
push "route-ipv6 YOUR_ASSIGNED_RANGE::/64"if you share the assigned IP range between the host and the VPN clients (otherwise the host-segment won't be reachable by VPN clients)
push "dhcp-option DNS YOUR_DNS_HERE"lines
systemctl restart openvpn-iptables.service