Join Log in
Score:0
Schweini avatar Server

Acessing only specific devices on an openvpn client network

de flag
Schweini

I have the following use case for my openvpn server on ubuntu(without access server):

I have a router, which acts as my openvpn client. This router has some devices behind it, which need to be accessed by the openvpn server and some which should not be accessible to the openvpn server. The Openvpn server will have many connections from many clients, with possibly the same subnet behind them.

My first idea was to use "tun" configuration with port forwarding, but I can't use that because I don't want the devices to be acessible from the internet.

Now I am thinking about using tap, but only specific clients should be acessible and also there is the problem that some routers will have the same subnet and some will have a different subnet.

What would be the best way to achieve this?

I hope there is a solution to my problem, if not it would most probably also be okay, but not ideal to make the whole client network accessible.

32
0 + 0
in flag
NiKiZe
When adding dnat rules (portb forwards) you can chose which IP and/or interface they are relevant for.
0
Reply
ธงชาติไทย
Elon Musk
I sit in a Tesla and translated this thread with Ai:

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.