[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

Re: [Openvpn-users] Block traffic over certain ports?


  • Subject: Re: [Openvpn-users] Block traffic over certain ports?
  • From: Cirroc <cirroc@xxxxxxxxx>
  • Date: Fri, 16 Nov 2007 17:11:05 -0500

Cirroc wrote:
> I've tried a few things to block certain ports- Either adding to the 
> input or output chains, or the forward chain.. Nothing seems to help. 
> Even with these in place, I can still ssh or terminal services from 
> machine A on the VPN to machine B.
>
> [root@vpn openvpn-2.0.9]# iptables -t filter -A FORWARD -i tun0 -p tcp 
> --destination-port 22 -j DROP
> [root@vpn openvpn-2.0.9]# iptables -t filter -A INPUT -i tun0 -p tcp 
> --destination-port 22 -j DROP
> [root@vpn openvpn-2.0.9]# iptables -t filter -A INPUT -i tun0 -p tcp 
> --destination-port 3389 -j DROP
> [root@vpn openvpn-2.0.9]# iptables -t filter -A FORWARD -i tun0 -p tcp 
> --destination-port 3389 -j DROP
>

____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users