Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Incoming VPN traffic

    Scheduled Pinned Locked Moved Firewalling
    2 Posts 2 Posters 835 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J Offline
      jaredadams
      last edited by

      Hello all I'm looking for some clarification on firewall rules regarding my two VPN instances.

      http://imgur.com/2NULHlS

      I want very little connectivity between VPN_NOC and LAN_NOC.  The LAN_NOC interface has rules setup to limit traffic outbound to the VPN.  However, traffic is coming in completely unblocked from VPN_NOC and there are no rules at all set up on its interface.  Is this due to this OpenVPN interface with any/any rules?  Is it overriding the lack of rules on VPN_NOC and letting traffic through?

      Is the correct way to handle this to remove the rule form the OpenVPN interface and add rules to each individual VPN interface?  I'd like to keep the any/any rule for LAN and VPN_ICS.  But I'd greatly like to limit traffic coming in from VPN_NOC.

      Thanks!

      1 Reply Last reply Reply Quote 0
      • jimpJ Offline
        jimp Rebel Alliance Developer Netgate
        last edited by

        OpenVPN tab rules are processed before the per-tab rules. Your allow all on the OpenVPN tab renders and assigned VPN interface tabs useless.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.