Allow a single IP on my LAN clients who connect with OpenVPN



  • My config:
    Lan : 192.168.60.0/24
    Pool ip openvpn: 192.168.100.0/24

    WAN
    *  LAN net  *  *  *  *

    WAN
    UDP  192.168.100.0/24  *  *  1194 (OpenVPN)  *      vpn1

    LAN
    *  LAN net  *  *  *  *      Default LAN -> any

    Hello,

    I need to allow a single IP on my LAN clients who connect with OpenVPN client. (pool: 192.168.100.0/24)
    I did several tests with NAT rules and Wan unsuccessfully.

    it's possible?

    Thank you

    VPN > 192.168.100.0/24 Block all traffic except on 192.168.60.250



  • I'm not 100% clear on what you mean, but I think you're asking about filtering an OpenVPN interface. If so, this can only be done on 1.2.3 and it's kind of buggy. There have been several posts about it. If you want to try it, you need to disable auto created VPN rules in advanced options, and then add the openvpn interface as an opt. If you have other existing VPNs setup (of any kind) be careful here and don't forget to recreate rules for them.



  • ok thanks you

    @Briantist:

    I'm not 100% clear on what you mean, but I think you're asking about filtering an OpenVPN interface. If so, this can only be done on 1.2.3 and it's kind of buggy. There have been several posts about it. If you want to try it, you need to disable auto created VPN rules in advanced options, and then add the openvpn interface as an opt. If you have other existing VPNs setup (of any kind) be careful here and don't forget to recreate rules for them.


Log in to reply