Re: [Openvpn-users] OPenVPN 2.5 - How to allow client access to the web but not to the local LAN?

Hi, On Thu, Oct 19, 2023 at 06:11:48PM -0400, Bo Berglund wrote: > What is the simplest way to accomplish this? You need to involve local firewalling to do this. > What do I need to do to get the web only config? > > push "redirect-gateway def1 bypass-dhcp" #This makes the client access > Int

Re: [Openvpn-users] OPenVPN 2.5 - How to allow client access to the web but not to the local LAN?

On Fri, 20 Oct 2023 01:22:17 +, tincantech via Openvpn-users wrote: >-BEGIN PGP SIGNED MESSAGE- >Hash: SHA256 > >Hi, > >--- Original Message --- >On Friday, October 20th, 2023 at 00:31, Bo Berglund >wrote: > > > >> I have done that previously using ccd commands to assign a u

Re: [Openvpn-users] OPenVPN 2.5 - How to allow client access to the web but not to the local LAN?

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Hi, --- Original Message --- On Friday, October 20th, 2023 at 00:31, Bo Berglund wrote: > I have done that previously using ccd commands to assign a user a specific IP > address and then block that address in IPTABLEWS from reaching the

Re: [Openvpn-users] OPenVPN 2.5 - How to allow client access to the web but not to the local LAN?

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Hi, --- Original Message --- On Friday, October 20th, 2023 at 00:31, Bo Berglund wrote: > On Thu, 19 Oct 2023 22:52:12 +, tincantech via Openvpn-users > openvpn-users@lists.sourceforge.net wrote: > > > I think I have misunderstood a

Re: [Openvpn-users] OPenVPN 2.5 - How to allow client access to the web but not to the local LAN?

On Thu, 19 Oct 2023 22:52:12 +, tincantech via Openvpn-users wrote: >I think I have misunderstood above. > >You want to take away client access to the server LAN. Yes, I want these clients to only use the VPN server as a way to reach the Internet from anothere lo0cation than their own. But n

Re: [Openvpn-users] OPenVPN 2.5 - How to allow client access to the web but not to the local LAN?

On Thu, 19 Oct 2023 22:39:29 +, tincantech via Openvpn-users wrote: >-BEGIN PGP SIGNED MESSAGE- >Hash: SHA256 > >Hi, > >--- Original Message --- >On Thursday, October 19th, 2023 at 23:11, Bo Berglund >wrote: > > > >> Now I would like to add one more type, web-only: >> 4 - Cl

Re: [Openvpn-users] OPenVPN 2.5 - How to allow client access to the web but not to the local LAN?

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Hi, --- Original Message --- On Thursday, October 19th, 2023 at 23:39, tincantech via Openvpn-users wrote: > Hi, > > --- Original Message --- > On Thursday, October 19th, 2023 at 23:11, Bo Berglund bo.bergl...@gmail.com > wrote

Re: [Openvpn-users] OPenVPN 2.5 - How to allow client access to the web but not to the local LAN?

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Hi, --- Original Message --- On Thursday, October 19th, 2023 at 23:11, Bo Berglund wrote: > Now I would like to add one more type, web-only: > 4 - Clent can only access the web through the server side gateway but not the > local LAN >

[Openvpn-users] OPenVPN 2.5 - How to allow client access to the web but not to the local LAN?

So I have previouisly configured a lot of servers which do one of 3 things: 1 - Client access to the Internet AND to the server side LAN 2 - Cliuent access to the server side LAN only, no forwarding to the web 3 - Client only has access to other client on the same VPN server Now I would like to ad