4. Different ACLs for OpenVPN connections

Different ACLs for OpenVPN connections

  • S

    hi @all,

    i have configured more than 5 client to site connections over openvpn. All this vpns have the same firewall acl.
    now i want to create a new vpn connection. this vpn connection should use another firewall acl. but only this new connection.
    How can i do that ?

    thanks a lot :)

    0
  • B

    Use a dedicated OpenVPN instance with dedictated subnet, and place one (or more) rules for that subnet on top of the rules with the actions you want for that specific subnet?
    Should not be to difficult to implement & test…  ;)

    0
  • S

    hi, thanks for your answer!
    When i add a new OpenVPN server at the openvpn settings, i have to choose a another offical ip address, but i have only one - so the port 1194 is currently in use and i can´t configure a new server. Is there another solution?

    0
  • P

    OpenVPN server can listen on any port you like - you can use 1195 next if you like.
    Make sure to have a firewall rule on WAN that allows access to the port/s you are using.
    When you do a Client Export to make a client config for that server, it will put the port number in the client config so the client will know which port to connect to.

    0
  • S

    all right, that sounds great - thank you guys!

    0
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2018 Rubicon Communications, LLC | Privacy Policy