OpenVPN allow 1 IP not all Lan visible



  • Hello all.

    I have a OpenVPN

    IPv4 Tunnel Network  192.168.0.0/24

    IPv4 Local Network/s  10.10.1.0/24

    it work fine.

    my problem is when clients connect to vpn can see all the subnet 10.10.1.0/24

    I want to setup vpn from some clients to see  only  one IP  such as 10.10.10.150  = web server.  and not all the subnet /24

    is any way to do that ?

    thanks



  • On the VPN firewall, make 3 rules

    pass to 10.10.10.150/32
    block 10.10.10.0/24
    pass from any to any