Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
F
F
Father42021-04-03 01:14:11
openvpn
Father4, 2021-04-03 01:14:11

Isolate OpenVPN clients in RouterOS?

Hello, the task is to isolate OpenVpn clients connected to Mikrotik. To not see each other on the network.
All connected to the same subnet 192.168.100.xxx. The addressing is dynamic. Is it possible to do this without writing firewall rules for each client?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

3 answer(s)
Report
F
Father4, 2021-04-04
@Father4

Can someone help
The question was solved by adding one single routing rule

/ip route rule
add action=unreachable comment="Block VPN Client-to-Client access" dst-address=192.168.100.0/24 src-address=192.168.100.0/24

Through Winbox:
ip -> routes -> Rules ->
src. address (the network you want to close) 192.168.100.0/24
dst. address (to whom you want to block access to the above network) 192.168.100.0/24
action - unreachable

Report
K
ky0, 2021-04-03
@ky0

Is it possible to do this without writing firewall rules for each client?

For each client and it is not necessary - register at once for all.

Similar questions
S
Solyahauu2017-11-17 06:48:34
Chinese provider blocks OpenVPN, what are the ways to get around? 1Reply
V
Vladimir Kivva2017-11-18 13:43:50
What is the magic of openvpn without ca? 1Reply
I
iosium2017-11-24 03:42:14
Openvpn server Windows Server 2016 and Mikrotik Rb951g-2hnd in offices, who can help? 3Reply
A
Alexander Samoylenko2017-11-24 15:10:27
How to combine multiple tun interfaces? 1Reply
M
Max Payne2017-12-05 23:59:43
Why won't OpenVPN start? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question