Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Block access to a user

    Scheduled Pinned Locked Moved OpenVPN
    4 Posts 2 Posters 1.8k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      apant
      last edited by

      Hi.

      I have an openvpn installation with Pfsense 1.2.3 and I want to block the access to some ipaddresses to some clients. How can I do that? Is there anything that I can add to custom options of the client to do it?

      For example in my network I have 3 servers 10.10.10.1 , 10.10.10.2 , and 10.10.10.3 . I want openvpn client with common name client12 to not me able to access 10.0.0.2.

      ???

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        You'll need CSC entries to make sure the specific common-name gets a certain IP address (search the forum, it's been discussed a lot).

        As for filtering, see here: http://doc.pfsense.org/index.php/OpenVPN_Traffic_Filtering_on_1.2.3

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • A
          apant
          last edited by

          Thank you my friend. I will try it soon.

          1 Reply Last reply Reply Quote 0
          • A
            apant
            last edited by

            Finally I didn't try this solution because I used the 2.0 beta version and I am totally excited with the openvpn configuration !

            1. It has OPENVPN Firewall seperately from the physical interfaces !
            2. You can create certificates inside pfsense easily without using easy-rsa !
            3. You can provide configuration to the client very easy by using an amazing package !

            There is nothing more for someone to ask !!!!!!!

            ;D ;D ;D ;D ;D ;D ;D

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.