OpenVPN-Client security risks?
-
Hello,
I just bought NordVPN and sucessfully finished the setup with this tutorial: https://support.nordvpn.com/Connectivity/Router/1626958942/pfSense-2-5-Setup-with-NordVPN.htm
To be honest I didn't understand half of the explanation and only typed the commands in. Therefore I'm afraid that this configuration might be a security risk. Can someone else (like NordVPN team) now access my local network? Something else to worry about?
Thank you
-
@richardeb
No, if you only did the recommended setup you're safe.However, be careful when you add an OpenVPN server on your pfSense additionally.
The wizard if you run it, will add an allow any rule to the OpenVPN tab. You must consider that the OpenVPN tab is in fact an interface group which includes all the OpenVPN instances, either servers and clients, you're running on pfSense. And rules on an interface group have priority over rules on member interface tabs.So to stay save when running additional OpenVPN instances, where you must permit inbound access from, either assign an interfaces to each of the instances and define your rules there, while you leave the OpenVPN tab blank, or set the source in the rule so that it is only applied to the concerned VPN clients.