Re: OpenVPN passing thru ipfilter firewall.

From: sam (samwun_at_hgcbroadband.com)
Date: 05/16/04

• Next message: Lute Mullenix: "Re: Recomendation on freebsd book"
• Previous message: Lute Mullenix: "Re: New to BSD Basic Questions and Issues with Installation Via CD"
• In reply to: Dariusz Kuliński / TaKeDa: "Re: OpenVPN passing thru ipfilter firewall."
• Next in thread: Thomas Wolf: "Re: OpenVPN passing thru ipfilter firewall."
• Reply: Thomas Wolf: "Re: OpenVPN passing thru ipfilter firewall."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---

Date: Mon, 17 May 2004 03:56:01 +0800

Dariusz Kuliński / TaKeDa wrote:

> On Mon, 17 May 2004 01:53:16 +0800, sam wrote:
>
>
>>The OpenVPN (2.0 beta2) server is located behind the IpFilter firewall (
>>in FreeBSD), The OpenVPN server is configured with dev tap (bridge
>>mode) in Redhat 9.0.
>>How can I configure the IpFilter firewall allow a mobile user (OpenVPN
>>client) Roadwarriors connect to the OpenVPN server behind the IpFilter
>>firewall?
>
>
> Just allow access from that user IP to port on which OpenVPN is running,
> that's all.
>
This is fine for peer-to-peer connection (with static IPs), how about
connection for Roadwarriors? OpenVPN server can "push" network setting
to the client in the "mode server" configuration. Client use "pull"
command to accept incomng network configuration to setup routing table
to route to OpenVPN server's internal subnet.

When OpenVPN start up at "mode server" mode, it is listening connection
from every where, and from mobile users whose IP is dynamically changed
by their ISP.

Thanks
sam

---

• Next message: Lute Mullenix: "Re: Recomendation on freebsd book"
• Previous message: Lute Mullenix: "Re: New to BSD Basic Questions and Issues with Installation Via CD"
• In reply to: Dariusz Kuliński / TaKeDa: "Re: OpenVPN passing thru ipfilter firewall."
• Next in thread: Thomas Wolf: "Re: OpenVPN passing thru ipfilter firewall."
• Reply: Thomas Wolf: "Re: OpenVPN passing thru ipfilter firewall."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---

Relevant Pages Re: OpenVPN [was: IPSec VPN docs] ... Well, yeah, if 22 is the port your OpenVPN server is listening for this ... particular client. ... Typically, if the OpenVPN server is behind a firewall, most OpenVPN ... (Fedora) Re: OpenVPN error problem ... When I try to start my openvpn server ir receive this error: ... called keys), then your config file got bollixed up somehow to make the ... (comp.os.linux.networking) Re: OpenVPN and ISA 2004 ... OpenVPN does not use IPSec or PPTP, but rather uses SSL to encrypt the ... open a connection to the OpenVPN server from outside your firewall? ... (microsoft.public.isa) Re: Problems with OpenVPN+routing and creating tun0 interface ... connect to OpenVPN server. ... configure either OpenVPN or FreeBSD to actually create that tun0 interface. ... Vaclav Haisman ... (freebsd-stable) OpenVPN - Implementation ?s ... current network configuration as well as the other end of my proposed ... also access shares on the samba server within my internal network. ... I wasn't sure if I could configure OpenVPN as I have outlined. ... (linux.redhat)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(13)