I've moved an installation to server (Debian) which has a single public IP, and uses UFW (Uncomplicated Firewall) to block all but port 1194. (Previously I've only ever had experience with a private IP range behind an external firewall).
Trying to get my head around if this should work or not - with a "push" route surely the VPN wouldn't be able to communicate, but without it how does the client know to send all the traffic over the VPN?
Can anyone clarify this for me? What's the best practice in this environment?
[Solved] Single public IP on server for redirect gateway
Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech
-
- OpenVpn Newbie
- Posts: 11
- Joined: Mon Dec 02, 2013 3:16 pm
- Traffic
- OpenVPN Protagonist
- Posts: 4066
- Joined: Sat Aug 09, 2014 11:24 am
Re: Single public IP on server?
It will work .. the public IP of the server does not influence --push "redirect-gateway" as the gateway is set to the server VPN IP.sp1dergeek wrote:Trying to get my head around if this should work or not
-
- OpenVpn Newbie
- Posts: 11
- Joined: Mon Dec 02, 2013 3:16 pm
Re: Single public IP on server?
That's great, working nicely, thank you.
- Traffic
- OpenVPN Protagonist
- Posts: 4066
- Joined: Sat Aug 09, 2014 11:24 am
Re: Single public IP on server?
Great .. thanks for letting us know