Problem allowing access from client to service on OpenVPN AS
Posted: Thu Mar 14, 2013 12:49 pm
Hi,
so i want to have a basic setup with a service running on the same server as the OpenVPN Access server. But i want it only to be accessible from vpn clients through the vpn.
openvpn access server 5.5.0.1
openvpn client 5.5.8.2
I can ping in both directions.
client -> server
server: netcat -l 5.5.0.1 10000
client: netcat 5.5.0.1 10000
drops immediately tcpdump on the client shows a tcp packet with a RST flag as the answer to the first SYN package
server -> client
client: netcat -l 5.5.8.2 10000
server: netcat 5.5.8.2 10000
this works
I think it is related to the netfilter configuration OpenVPN Access Server creates but this are so many interfaces and chains and rules i cannot follow.
What should i have setup in the OpenVPN Access Server to have this working?
so i want to have a basic setup with a service running on the same server as the OpenVPN Access server. But i want it only to be accessible from vpn clients through the vpn.
openvpn access server 5.5.0.1
openvpn client 5.5.8.2
I can ping in both directions.
client -> server
server: netcat -l 5.5.0.1 10000
client: netcat 5.5.0.1 10000
drops immediately tcpdump on the client shows a tcp packet with a RST flag as the answer to the first SYN package
server -> client
client: netcat -l 5.5.8.2 10000
server: netcat 5.5.8.2 10000
this works
I think it is related to the netfilter configuration OpenVPN Access Server creates but this are so many interfaces and chains and rules i cannot follow.
What should i have setup in the OpenVPN Access Server to have this working?