Limiting client routing table?

This forum is for admins who are looking to build or expand their OpenVPN setup.

Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech

Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Post Reply
homer
OpenVpn Newbie
Posts: 1
Joined: Wed Jan 24, 2024 6:01 pm

Limiting client routing table?

Post by homer » Wed Jan 24, 2024 6:03 pm

I want to push a /32 route to the client so they can only access that single IP, but of course nothing prevents them from filtering that route and installing a /24 route to reach the whole subnet.
To protect against this, does openvpn have some config option or should it be done with iptables outside of openvpn?
Top
TinCanTech
OpenVPN Protagonist
Posts: 11138
Joined: Fri Jun 03, 2016 1:17 pm

Re: Limiting client routing table?

Post by TinCanTech » Tue Jan 30, 2024 5:31 pm

The FOSS Openvpn-ce cannot control a wayward client.

The protection you require must be configured on the server side.
Top
Post Reply

Return to “Server Administration”