4. Openvpn allow all rule, security risk?

Openvpn allow all rule, security risk?

  • D

    Hello everyone,

    I just setup a site-site VPN to push some of my home network traffic through. The other end of the VPN is an untrusted VPS that I do not want to allow access to my LAN. For now I have an allow all from anywhere rule on the VPN interface under Firewall: Rules. Is this an improper setup and putting me at risk? Do I even need this rule to only push traffic from my home through the vps and out to the internet? Thanks!

    0
  • LAYER 8 Global Moderator

    So your vpn needs unsolicited inbound traffic to your network?  I doubt that if your just using it as a exit point for your internet traffic.

    Think of vps as another wan connection, do you allow all inbound on your wan? ;)

    0
  • D

    @johnpoz:

    So your vpn needs unsolicited inbound traffic to your network?  I doubt that if your just using it as a exit point for your internet traffic.

    Think of vps as another wan connection, do you allow all inbound on your wan? ;)

    Gotcha, I wasn't sure if it was only for inbound traffic. I disabled the rule entirely and things still seem to be working. Thanks for helping me understand!

    0
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy