Do you need any other ports for OVPN?

F

fpir2020-11-03 15:16:25

Computer networks

fpir, 2020-11-03 15:16:25

Behind the router with NAT is a Mikrotik in which the OpenVPN server is configured. Port 5000 is clearly defined in the server settings. On the gateway I forward the 5000th port in the Mikrotik VLAN - the port is closed.
I add Mikrotik to DMZ, I write 2 rules: output - input all ports allow always - VPN rises. I change all ports in the input rule to 5000 - the port is closed.
In all rules, protocols - both
OVPN need some more ports?

Reply

Answer the question

In order to leave comments, you need to log in

3 answer(s)

A

Alexey Dmitriev, 2020-11-03
@SignFinder

No, not needed.
OpenVPN uses one port - either UDP or TCP, depending on the server's openvpn settings.

K

ky0, 2020-11-03
@ky0

No, from the server side there is only one port specified in the config. For clients - how it will turn out, but it is also customizable.

D

Drno, 2020-11-03
@Drno

allow incoming port on the openvpn server, allow any outgoing, check
the client on the ovpn port Only connects for the first time, then it is transferred to a random port. as far as I remember. Mikrotik's ovpn settings can't configure these ports