Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
Andrey Evdokimov2021-06-24 16:21:24
openvpn
Andrey Evdokimov, 2021-06-24 16:21:24

How to allow NAT only when OpenVPN is connected on Ubuntu Server?

Good evening.
Task: route client traffic from the internal network through OpenVPN.

Right now I'm using the following rules:

sudo iptables -A FORWARD -o tun0 -i eth0 -s 192.168.1.0/24 -m conntrack --ctstate NEW -j ACCEPT
sudo iptables -A FORWARD -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT
sudo iptables -A POSTROUTING -o tun0 -t nat -j MASQUERADE


Faced with the fact that in the absence of a vpn connection, traffic starts to go through the usual one. Can you please tell me how to disable it?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
P
pcdesign, 2021-06-24
@Uncle_Stranger

iptables --policy FORWARD DROP

Similar questions
H
Hidevs2014-10-10 12:42:12
How to map a network drive to openwrt? 1Reply
S
SachaDerr2014-10-16 13:30:27
Have I configured my OpenVPN gateway correctly? 2Reply
F
FinEkat2019-03-15 22:22:30
Setting up an OpenVPN server with two gateways? 2Reply
K
Kordamon2019-03-18 16:24:40
Why do two OpenVPN sessions from the same network kill each other? 2Reply
A
aphazel2019-03-26 15:00:17
Why do OpenVPN clients have no audio on incoming FreePBX calls? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question