It is my understanding that OpenVPN has been dropped from m0n0wall
because how it plugged-in to m0n0wall's interface model, problems
occur when OPT interfaces are added or removed.
Could I be so bold as to suggest adding OpenVPN back into m0n0wall,
but instead at the interface level, place OpenVPN *behind* the
The user could choose which segment to place OpenVPN into, specify
it's reserved IP address (aka PPTP), and non-overlapping network.
The NAT Rule, Firewall Rule and Static Route could be automatically
generated, or left to the user.
Since OpenVPN does not have the NAT firewall problems as IPSec and
PPTP does, placing OpenVPN behind the firewall does not present such
Does this make sense?