Page 1 of 1
Including ICMP in access restrictions
Posted: Mon Nov 14, 2022 1:11 pm
by chort1
When creating custom access rules, one can limit traffic to certain ports/services, like:
Code: Select all
"access_to.0": "+ROUTE:10.0.0.0/24:https,tcp80"
But it seems that putting any port restrictions on an access rule automatically blocks ICMP. Is there any way to explicitly allow ICMP?
(I tried adding icmp to the list of port/services)
Re: Including ICMP in access restrictions
Posted: Mon Nov 14, 2022 1:50 pm
by openvpn_inc
Hello chort1,
I believe the name to use is icmp-echo-request (taken from the tooltip that shows up in allow access to section in group permissions).
Kind regards,
Johan
Re: Including ICMP in access restrictions
Posted: Mon Nov 14, 2022 2:00 pm
by chort1
Oh, nice! I did not notice that tooltip. (Almost never use the GUI). I'll try it out.
By the way, is there any documentation that shows the supported ports/protocols/services?
Re: Including ICMP in access restrictions
Posted: Mon Nov 28, 2022 2:14 pm
by chort1
As a follow-up to this, is there any way to specify a range of ports in the access_to rules? Like tcp/5000-5100, or something similar?
Re: Including ICMP in access restrictions
Posted: Mon Nov 28, 2022 2:30 pm
by openvpn_inc
Hello,
Yeah what you mentioned should work. Works here when I just tried it.
Kind regards,
Johan