AWS ClientVPN (fed. auth) concurrently with other OpenVPN connection

Question

Hi,

another question about the AWS ClientVPN: I'm trying to find a way to run a OpenVPN connection concurrently with it on Windows 10.

This works on Linux and macOS, but on Windows, the installation of one client seems to overwrite the TAP adapter of the other, or to not install an adapter at all and then complaining that there's none available. I tried to bind the configurations to one specific TAP by replacing the usual

```
dev tun
```

with

```
dev-node tun
dev-tun $adapter_name
```

but that option isn't available in the AWS client, and unfortunately, I can't use the OpenVPN client for AWS because we use federated authentication there.

Is there any way to get this working?

Thanks,

Marc

Gary Mclean · Accepted Answer

I havent tried or tested it but just a suggestion.. Have you tried adding a 2nd Adaptor? https://stackoverflow.com/questions/21210071/how-to-create-a-2nd-tap-adapter-for-openvpn-client-on-win7-10

Marc · Answer

Hi Gary,

yes, I did that. It works perfectly fine with two different OpenVPN connections when you bind the adapters in the config files, but since that option doesn't exist in the AWS client, it complains that there are no adapters available.

It turned out that order of installation is important:

1. removed all TAP adapters and VPN client installations
2. installed AWS VPN
3. installed OpenVPN (that did **not** install a TAP adapter at this point)
4. added one TAP with OpenVPN's tapctl
5. bound this TAP to the OpenVPN config

AWS VPN now uses the adapter it installed itself and OpenVPN the adapter that it has in its configuration file.

A bit complicated, but it seems to work now.

Thanks,

Marc

AWS ClientVPN (fed. auth) concurrently with other OpenVPN connection

Add your answer

Relevant content