[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Web openvpn.net

Re: [Openvpn-users] OpenVPN as tunnel endpoint

  • Subject: Re: [Openvpn-users] OpenVPN as tunnel endpoint
  • From: Martijn Lievaart <m@xxxxxxx>
  • Date: Sat, 15 Jan 2005 00:11:18 +0100

Michael Thomas wrote:


 I am  trying to setup the following configuration:

XP machine<--> NAT-Router <--internet--> Linux/OpenVPN server

I would like access services(http,smb) running on the Linux/OpenVPN server over the vpn tunnel. These services are running on the same interface and IP address as the OpenVPN server process. There is no local sub-net behind the vpn server. I can access the server via the tunnel, but have not succeeded in firewalling the services off from the internet. I tried denying access to eth+ interfaces using iptables, but this also caused me to lose connectivity to these services over the vpn tunnel.

Is the configuration I am proposing doable? I have googled around but come up blank.

Easy. Allow only the OpenVPN port in over eth+ and drop/reject the rest. That's all.

(Well except I assume you know how to write iptables rules, if you have any problems, post more details)

The SF.Net email is sponsored by: Beat the post-holiday blues
Get a FREE limited edition SourceForge.net t-shirt from ThinkGeek.
It's fun and FREE -- well, almost....http://www.thinkgeek.com/sfshirt
Openvpn-users mailing list