Thats what i tryed before asking :-) and it was not working
But now i saw this in the pfsense doc:
/Filtering OpenVPN Traffic/
/As of pfSense 1.2.3-RC1 and newer, you can filter incoming OpenVPN
traffic. To do so, browse to Interfaces -> Assign and assign the
appropriate tun interface to an OPT interface. Then enable the OPT
interface, and for IP address, enter "none" in the IP address box.
OpenVPN will configure it. Then browse to System -> Advanced and check
"Disable all auto-added VPN rules". Then browse to Firewall -> Rules and
configure your rules accordingly on your new interface. /
/If using multiple OpenVPN clients or servers, force them to use a known
interface by specifying custom option 'dev tun0', 'dev tun1', etc. Each
must use a unique interface.
/
i'm running on 1.2.2, might this be my problem? as it is a production
environment i don't think it's smart to upgrade to 1.2.3-RC3
might a vlan be a workaround, routing the traffic from the openVPN users
into a VLAN, and the from there rules to the LAN?
cheers
Andy
Joseph L. Casale wrote:
How can i create an OPT interface assigned to a tun interface?
I knew that reply I wrote was a bit sloppy:)
Make the OpenVPN config first specifying the Custom Opt as tun0.
Save it.
Then go back to your Interface Assignments and the Network port
selection will now have a tun0 interface.
jlc
---------------------------------------------------------------------
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com
Commercial support available - https://portal.pfsense.org
--
** <http://www.aironaut.ch/> *Andreas Fuchs*
Consultant/System Engineer Allmend 31
3504 Niederhünigen office: +41 31 508 18 16
mobile: +41 78 740 93 80
f...@tcnet.ch <mailto:f...@tcnet.ch>
www.aironaut.ch <http://www.aironaut.ch/>
