Hi!
I like to use IP-Filtering with PPP (OpenVPN) clients in combination
with a “return” target rule but the return configuration seems to be impossible.
As supposed I added a “jump to PPP” entry in my forward chain and created a new chain called “ovpn-forwards” which i also added in my profile-section.
So far everything works well. When a new client connects, PPP places a new
entry in the PPP chain and the data flow is like this…
[forward-chain] jump to → [PPP chain] jump to → [ovpn-forward chain]…
PROBLEM:
I want to return a packet to the standard forward-chain if the packet falls through the PPP chain so that further processing is possible. Therefore it should be possible to place a “return” entry at the end of the PPP chain. Yes, that works and it even is not auto-deleted after the last client disconnected. BUT: as soon as new PPP clients connect, their rules are placed AFTER the “return” rule in the PPP chain. Thats not what I want.
Is it possible to somehow fix the return rule at the end of the PPP chain?