Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    How to block traffic from an OpenVPN connection to LAN subnet

    OpenVPN
    3
    3
    632
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      aferreiro last edited by

      Hi,
      I have a pfsense box with 3 network interfaces ( WAN, LAN and OPT1).
      I created an OpenVPN server attached to 1194  UDP port.
      I Can connect to the VPN, and when the tunnel is established i can reach every host behind LAN and OPT1 interfaces.
      I need allow traffic from VPN ( 1194 port ) only to OPT1 and block traffic to LAN but I cannot figure out how yet.
      The tunnel trough 1194 port has an IP from the 172.16.2.0/24 range.
      I tried a firewall rule on OPT1 blocking traffic from 172.162.2.0/24 to LAN but i have no results.
      I Think i am missing something, but cannot figure out what.
      Can you help me ?
      Thanks in advance.

      1 Reply Last reply Reply Quote 0
      • D
        doktornotor Banned last edited by

        The rules go on the OpenVPN tab. Not on LAN/OPT.

        1 Reply Last reply Reply Quote 0
        • S
          saytar last edited by

          @doktornotor:

          The rules go on the OpenVPN tab. Not on LAN/OPT.

          Succulent comment…........just defined an answer to a question I had been contemplating about my extra interfaces and a build out on my home network....................... 8)

          “An armed society is a polite society. Manners are good when one may have to back up his acts with his life.”

          “Ignorance is curable, stupid is forever.”
          ― Robert A. Heinlein, Beyond This Horizon

          1 Reply Last reply Reply Quote 0
          • First post
            Last post