Restrict OpenVPN users to specific FQDN's / IP addresses



  • I have setup an OpenVPN server and configured LDAP for user authentication,

    I now want to be able to restrict users to certain IP addresses inside our network but am unsure whether this would be done in AD or on the pfSense firewall?

    I'm also having problems using FQDN's when connected via VPN…access via IP works fine but using the internal domain name times out...

    Under 'Diagonostics' I can complete a DNS Lookup using the FQDN successfully so the pfSense machine can communicate properly with the internal DNS Severs

    I've read quite a few other user reports but can't seem to crack this on my setup,

    Any help appreciated!