Page 1 of 1

OpenVPN restrict acces list

Posted: Wed Nov 25, 2015 10:07 pm
by MikroTikFan
Despite the many constraints I succeed and establish openvpn connection ;-)
Now I just wondering how can I restrict access to recources (IP, port, MAC)

1) OpenVPN as a client, restriction by client side

2) OpenVPN as a server, restriction by server side

Re: OpenVPN restrict acces list

Posted: Fri Dec 18, 2015 6:44 pm
by MikroTikFan
Anyone can help me ?

Thank's in advance ;-)

Re: OpenVPN restrict acces list

Posted: Fri Dec 18, 2015 8:44 pm
by ZeroByte
Use the firewall filter table just like you would otherwise do. The forward chain will block traffic to/from the VPN clients just as it will any other traffic being forwarded through the router.

If you want a specific filter for ovpn clients, create chains in the filter table that does what you want (e.g. add chains named ovpn-in and ovpn-out, and allow/block connections as you need) and specify the chains in the ovpn profile (incoming filter and outgoing filter)