Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Filtering rules with multiple OpenVPN servers

    OpenVPN
    2
    2
    590
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mryan321 last edited by

      Hello all,

      Thanks in advance for any help…. :)

      I have 3 OpenVPN servers running on ports 1194, 1195 and 1196.
      I have 3 interfaces defined - VPN_1, VPN_2 and VPN_3 - each assigned to the relevant ovpnsx network port
      I have ticked box: "Disable all auto-added VPN rules" in System: Advanced: Firewall and NAT
      The interfaces are all up and show an IP address
      I can connect into VPN fine.

      However - I cannot get traffic filtered as expected. Any rules defined on the VPN_x lan are ignored. The only rules that are followed are any defined on the OpenVPN tab/interface. It seems very odd - I must be missing something obvious but I've tried and tried, rebooted, restarted and rebooted.

      I would be very grateful for any help with this.

      Thanks,
      Mark

      1 Reply Last reply Reply Quote 0
      • jimp
        jimp Rebel Alliance Developer Netgate last edited by

        The most likely cause in this scenario is that your per-interface rules are not being matched as you expect.

        If the VPNs are assigned with an IP type of "none" as they should be, make sure you are not using the macros for things like "VPN_1 subnet" and similar. With an IP type of "none" those are really blank/null. If you specify the actual subnets there, the traffic can be matched.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post

        Products

        • Platform Overview
        • TNSR
        • pfSense
        • Appliances

        Services

        • Training
        • Professional Services

        Support

        • Subscription Plans
        • Contact Support
        • Product Lifecycle
        • Documentation

        News

        • Media Coverage
        • Press
        • Events

        Resources

        • Blog
        • FAQ
        • Find a Partner
        • Resource Library
        • Security Information

        Company

        • About Us
        • Careers
        • Partners
        • Contact Us
        • Legal
        Our Mission

        We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

        Subscribe to our Newsletter

        Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

        © 2021 Rubicon Communications, LLC | Privacy Policy