Unusual OpenVPN Behavior
-
Hey all,
I am getting some unexpected behavior when connecting to a few VPNs I have created in my home network. I have several VLANs configured for a few different things on my network, and have made several VPNs to access each individual VLAN. I do not want to have one VPN that can access all networks.
After following the documentation and setting up the VPNs I tested each of them. When connecting via the command line using the openvpn command, everything works as expected. I can connect to the VPN, but only access the network listed as local network in that VPN server. When I connect via the default network connections app in Ubuntu's GUI I can access ALL of my VLANs. Even the ones that the "route" command does not show.
How can I make these VPNs only give access to the VLANs I intended to? Thanks in advance for any help!
-
@wmw509
Presumably the Ubuntu GUI routes all upstream traffic to the OpenVPN server. It's on the client to do this.So remember, pushing routes are not a proper way to limit access to your networks. You have to configure proper firewall rules to allow only the desired access.
-
@viragomann
Understood, thank you for the response. Do you have a link to documentation or a good guide on doing this? -
@wmw509
I'm talking about simple firewall rules. That's part of the basic setup of pfSense.Start here: Rule Methodology