Author | Message |
---|---|
Topic: NAT between interfaces | |
Fedex03 Replies: 3 Views: 1619 |
Forum: Advanced Networking Posted: Fri Oct 06, 2023 13:41 Subject: NAT between interfaces |
NAT isn't the way to do it.
Use a iptable rule that allow traffic between the two. iptables -I FORWARD -i br0 -s 192.168.2.10 -o br1 -J ACCEPT I modified your rule as follow iptables -I FO ... |
|
Topic: Disable DDWRT Gui Access from VPN | |
Fedex03 Replies: 0 Views: 1891 |
Forum: Advanced Networking Posted: Fri Oct 06, 2023 6:31 Subject: Disable DDWRT Gui Access from VPN |
Hi there,
my configuration is: - br0: private network (192.168.2.x) - br1: IoT network (192.168.10.x) From br0 I can reach the DDWRT Gui and from br1 don't I have an OpenVPN server, t ... |
|
Topic: [Solved] Allow VPN client to reach only PC | |
Fedex03 Replies: 8 Views: 2413 |
Forum: Advanced Networking Posted: Fri Oct 06, 2023 6:23 Subject: [Solved] Allow VPN client to reach only PC |
Hi @ @ecg,
I read you guide again and now the "Bypass LAN Same-Origin Policy" is clear! I think I keep it enabled and I use the firewall rule. I just wanto to avoid to deal with window ... |
|
Topic: NAT between interfaces | |
Fedex03 Replies: 3 Views: 1619 |
Forum: Advanced Networking Posted: Tue Oct 03, 2023 15:44 Subject: NAT between interfaces |
Hi there,
I have my home PC on BR0 (192.168.2.10) and I would like to reach this PC (via RDP) from another PC on BR1 (192.168.10.x). The two bridges are separated and isolated. So to do that ... |
|
Topic: [Solved] Allow VPN client to reach only PC | |
Fedex03 Replies: 8 Views: 2413 |
Forum: Advanced Networking Posted: Tue Oct 03, 2023 15:30 Subject: [Solved] Allow VPN client to reach only PC |
In the GUI if you have: "Push Client route" set to "Default Gateway" then there is no need to push additional routes.
To restrict access you can do one of two things: 1. Disab ... |
|
Topic: [Solved] Allow VPN client to reach only PC | |
Fedex03 Replies: 8 Views: 2413 |
Forum: Advanced Networking Posted: Wed Sep 27, 2023 16:01 Subject: [Solved] Allow VPN client to reach only PC |
You can set access rules on the local lan clients either to allow just one client e.g.10.8.0.254/32 or allow the whole subnet 10.8.0.0/24.
Alternatively set MASQUERADING rules on the router per vpn ... |
|
Topic: [Solved] Allow VPN client to reach only PC | |
Fedex03 Replies: 8 Views: 2413 |
Forum: Advanced Networking Posted: Mon Sep 11, 2023 15:23 Subject: [Solved] Allow VPN client to reach only PC |
Disable "Bypass LAN Same-Origin Policy" your LAN clients should have their own firewall which can/should block access from all non local subnets e.g. it should block the OVPN servers subnet ... | |
Topic: [Solved] Allow VPN client to reach only PC | |
Fedex03 Replies: 8 Views: 2413 |
Forum: Advanced Networking Posted: Sun Sep 10, 2023 17:31 Subject: [Solved] Allow VPN client to reach only PC |
Hi there,
I have an OpenVPN server with several clients. Each client can reach every service on br1 (included ddwrt interface). I assigned a static IP to one of these clients and I would like t ... |
|
Topic: Iptable to block routing between interfaces | |
Fedex03 Replies: 6 Views: 580 |
Forum: Advanced Networking Posted: Fri Sep 08, 2023 6:52 Subject: Iptable to block routing between interfaces |
Network isolation only isolates against the main LAN i.e. br0 but not against other bridges with other subnets.
Oh thanks! Now I can respond to me previous question: br1 cannot access br0 (main ... |
|
Topic: Iptable to block routing between interfaces | |
Fedex03 Replies: 6 Views: 580 |
Forum: Advanced Networking Posted: Fri Sep 08, 2023 6:26 Subject: Iptable to block routing between interfaces |
You need to be careful of order of the rules... Did you check any of the boxes with isolate or bridged?
HI, br2 has "Net Isolation" enabled, but from this bridge I can access br1. |
|
Topic: Iptable to block routing between interfaces | |
Fedex03 Replies: 6 Views: 580 |
Forum: Advanced Networking Posted: Thu Sep 07, 2023 14:41 Subject: Iptable to block routing between interfaces |
Hi there,
I have 3 LANs: br0: trusted network br1: IoT network br2: Guest network Every network has its DHCP server and its WiFi network. I added these rules: # Forward between br0 toward ... |
|
Topic: Limit OpenVPN Client to access only a specific IP | |
Fedex03 Replies: 3 Views: 491 |
Forum: Advanced Networking Posted: Thu Sep 07, 2023 13:16 Subject: Limit OpenVPN Client to access only a specific IP |
You can assign a specific IP address to your VPN client (See chapter about CCD files) and then use IPtables rules to block that specific IP address from your LAN clients.
I used this in the past to ... |
|
Topic: Limit OpenVPN Client to access only a specific IP | |
Fedex03 Replies: 3 Views: 491 |
Forum: Advanced Networking Posted: Wed Sep 06, 2023 15:56 Subject: Limit OpenVPN Client to access only a specific IP |
Hi there,
I have several OpenVPN client that have access to my LAN (192.168.10.x) and I would like to know if it is possible to limit the access right to a specific client. In detail, I have a P ... |
|
Topic: [SOLVED] All client traffic goes to VPN | |
Fedex03 Replies: 5 Views: 864 |
Forum: Advanced Networking Posted: Wed Sep 06, 2023 15:32 Subject: [SOLVED] All client traffic goes to VPN |
Server setup guide: push client route
Hi @ecg, sorry for the late reply. I setted the radio button "Push Client Route" to "Servers Subnet" This is my "Additional C ... |
|
Topic: [SOLVED] All client traffic goes to VPN | |
Fedex03 Replies: 5 Views: 864 |
Forum: Advanced Networking Posted: Tue Feb 14, 2023 10:44 Subject: [SOLVED] All client traffic goes to VPN |
Read again the excellent guide from "egc" look at the section regarding (PBR) Policy Based Routing.
I suspect currently you have the Source Routing (PBR) set to route all sources via the VP ... |
|
All times are GMT |