Hi,
Within the OpenVPN Access Server interface or via the terminal is there a way to prevent client connections attempts from selected internal and external IPs?
I did think of using Linux's /etc/hosts.deny but it will invariably break legitimate connections to internal resources.
thanks
John
Prevent client connection attempts from selected internal and external IPs
-
johnds
- OpenVpn Newbie
- Posts: 9
- Joined: Fri Mar 04, 2022 3:17 pm
-
johnds
- OpenVpn Newbie
- Posts: 9
- Joined: Fri Mar 04, 2022 3:17 pm
Re: Prevent client connection attempts from selected internal and external IPs
Looks like the below GUI control is already configured in a sane manner:
USER MANAGEMENT > User Permissions > More settings > Allow Access From: "all server-side private subnets" [checkbox]
above not flagged by default.
USER MANAGEMENT > User Permissions > More settings > Allow Access From: "all server-side private subnets" [checkbox]
above not flagged by default.
-
openvpn_inc
- OpenVPN Inc.
- Posts: 1332
- Joined: Tue Feb 16, 2021 10:41 am
Re: Prevent client connection attempts from selected internal and external IPs
Hi John,
You'll find that fine-grained control of user/group access rules requires the command line interface:
https://openvpn.net/vpn-server-resource ... mand-line/
regards, rob0
You'll find that fine-grained control of user/group access rules requires the command line interface:
https://openvpn.net/vpn-server-resource ... mand-line/
regards, rob0
OpenVPN Inc.Answers provided by OpenVPN Inc. staff members here are provided on a voluntary best-effort basis, and no rights can be claimed on the basis of answers posted in this public forum. If you wish to get official support from OpenVPN Inc. please use the official support ticket system: https://openvpn.net/support