Hey all..
i have been trying to enforce firewall policies for openvpn clients but so far i am not able to achieve anything
This is how all my set up looks like:
my open vpn server is 10.8.0.1 while my client is 10.8.0.6 and i am routing the client's traffic through openvpn server(i followed this http://ift.tt/1vJudma ).
Both of them are fully functional and if i do traceroute for some website on the client so the first ip it shows is of the vpn server that is 10.8.0.1.
it forwards the traffic from tun0 to eth0 and invovles a bit of masquerading.
Now what i am trying to achieve is to block let say A.B.C.D on client but i want all these rules to be enforced on the openvpn server rather than the client.
so far i have tired these commands but they dont seem to help:
1) sudo ufw deny from 10.8.0.6 to A.B.C.D
2)sudo ufw deny from 10.8.0.1 to A.B.C.D
3)sudo ufw deny out on tun0 to A.B.C.D
4)sudo ufw deny from X.X.X.X( eth0's ip ) to A.B.C.D (it blocks ip on the openvpn server but not on the client)
Please help me on this..
thanks.
Firewalling for clients using Openvpn
Aucun commentaire:
Enregistrer un commentaire