|
|
> Surely somebody has a more elegant way to protect wireless hosts from > each other. Any suggestions? Well I'd suggest firewalling. The client host connected through the AP to the OpenVPN server does not need to accept ANY connections on it's not encrypted interface, except for the packets coming from the OpenVPN server (and maybe DNS, if you use a hostname and not an IP address). So you could use something like zone alarm and block any outgoing connections that are not for the OpenVPN host on port 5000 (TCP/UDP whatever you use) and block any incomming connections that are not comming from the OpenVPN host (and not established (if using TCP)). Jean-Pierre -- Powered by Linux From Scratch - http://schwicky.net/ PGP Key ID: 0xEE6F49B4 - AIM/Jabber: Schwicky - ICQ: 4690141 Nothing is impossible... Everything is relative! ____________________________________________ Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users |