Strange thing happens. RB is set up as ovpn server in ethernet mode. Ovpn clients have full access to hosts in RB's lan. Everything is okay except one thing, ovpn clients have no access to the RB itself at all.
Maybe I have to add some firewall rules? I have tried various with no success. Maybe bridges, chains?
-
-
scotthammersley
Member Candidate
- Posts: 230
- Joined:
- Location: Jackson, MS
- Contact:
Re: ovpn clients cannot access RB router
Can you post your settings? Please, include a network diagram.
Re: ovpn clients cannot access RB router
Diagram:
(LAN) ---- (RB) ---- (OVPN client)
Settings:
/interface ovpn-server server
set certificate=server.crt cipher=blowfish128,aes256 default-profile=openvpn-profile enabled=yes keepalive-timeout=16 \
max-mtu=1400 mode=ethernet port=563
/ppp profile
add bridge=bridge-local dns-server=192.168.2.1 local-address=192.168.2.1 name=openvpn-profile remote-address=\
ovpn-address-pool use-compression=yes use-encryption=yes use-ipv6=default
/ip pool
add name=ovpn-address-pool ranges=192.168.2.240/29
Every OVPN client has full access to any host on LAN and to any other OVPN client, but no access to RB itself, which I need a lot.
(LAN) ---- (RB) ---- (OVPN client)
Settings:
/interface ovpn-server server
set certificate=server.crt cipher=blowfish128,aes256 default-profile=openvpn-profile enabled=yes keepalive-timeout=16 \
max-mtu=1400 mode=ethernet port=563
/ppp profile
add bridge=bridge-local dns-server=192.168.2.1 local-address=192.168.2.1 name=openvpn-profile remote-address=\
ovpn-address-pool use-compression=yes use-encryption=yes use-ipv6=default
/ip pool
add name=ovpn-address-pool ranges=192.168.2.240/29
Every OVPN client has full access to any host on LAN and to any other OVPN client, but no access to RB itself, which I need a lot.