Page 1 of 1
open vpn firewall
Posted: Sun Dec 05, 2010 7:41 am
by mehdi2010
hello
is there a way that open vpn by access control list restrict a client to acess an ip
is there iptables or firewall on vpn server
thank
Re: open vpn firewall
Posted: Thu Dec 23, 2010 4:31 pm
by gladiatr72
A damned fine question, sir! Is there iptables or firewall on vpn server? If you're using Linux, the answer is YES. The port that OpenVPN runs on, by default, is UDP 1194. If you're really looking to make things more complicated, you could also leverage the client-connect script hook to check the client's connecting IP. If it doesn't exist in your list of allowed addresses, you could code the script so that it returns a non-zero error code which causes an immediate client disconnect. That seems a little bit more work than just creating iptables rules, though.
-Stephen