[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Web openvpn.net

Re: [Openvpn-users] Filter on tap device

  • Subject: Re: [Openvpn-users] Filter on tap device
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
  • Date: Fri, 21 Dec 2007 12:19:34 +0100

hi Marco,

as long as you don't have the server directive
in your server config file then clients should not be allowed to connect 
to each other.



Marco wrote:
> hello
> ive got an openvpn server running with TAP. i want to block traffic from 
> client A to client B. client A and client B are both connected over the 
> same openvpn server process (same server tap device)
> is this possible? can i block such traffic with iptables on the tap0 
> interface on the openvpn server?
> i think that want be possible cause TAP is like Layer2 and the packets 
> may be forwarded inside the opevpn process and not over the tap0 device

Openvpn-users mailing list