Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Rules order changes pfblocker - OPEN VPN issue

    Scheduled Pinned Locked Moved Firewalling
    4 Posts 2 Posters 557 Views 2 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B Offline
      Bambos
      last edited by

      Hello Everyone,

      i'm running open VPN server all default simple setup (user auth) road warrior. (working)

      then i install pfblocker and some rules were added for GEO IP like below.

      cf2c2b6d-7d91-4ef4-9a4e-9ee82c633b12-image.png

      Randomly the open VPN rule goes below everything (i don't know if this happen when pfblocker updates). When the open VPN rule goes below, the VPN road warrior setup is not working. Clients are expiring out ! As a confirmation, if i drag the open vpn rule above everything and hit save, the VPN access is working and tunnel establishing with no problem.

      How i can fix this issue ? Where is the problem ?

      V 1 Reply Last reply Reply Quote 0
      • V Offline
        viragomann @Bambos
        last edited by

        @bambos
        So go to pfBlockerNG GoeIP settings an exclude the countries where your road warrior should be able to connect from.

        B 1 Reply Last reply Reply Quote 0
        • B Offline
          Bambos @viragomann
          last edited by

          @viragomann
          is this GEO IP blocking for bad reputation IP's or everything ??

          V 1 Reply Last reply Reply Quote 0
          • V Offline
            viragomann @Bambos
            last edited by

            @bambos said in Rules order changes pfblocker - OPEN VPN issue:

            is this GEO IP blocking for bad reputation IP's or everything ??

            I'd suspect GeoIP blocking, however, check your firewall logs to find that out.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.