I defined a special number as my SSH port number in the DDWRT gui. With the firewall settings B above, it is absolutely no problem to establish a SSH connection to my VPN router AND to connect to this router with other devices using the VPN's IP Īll other devices connect to the VPN router. Yes, my VPN router is connected via its WAN Port to a LAN port of a router whicht connects to the internet. Openvpn -cd /tmp/nvpn -config nf -route-up /tmp/nvpn/route-up.sh -down /tmp/nvpn/route-down.sh -daemon This is written in my "server startup" fieldĮcho "mycertificate" > /tmp/nvpn/nvpn.crtĮcho "iptables -A POSTROUTING -t nat -o tun0 -j MASQUERADE"> /tmp/nvpn/route-up.shĮcho "iptables -D POSTROUTING -t nat -o tun0 -j MASQUERADE"> /tmp/nvpn/route-down.shĬa /tmp/nvpn/nvpn.crt" > /tmp/nvpn/nf Ive read about the following proposed settings:Īnyway if i add these proposed settings to my "firewall settings a", i cannot establish a tunnel anyway.Īlso, when I just use the proposed settings and delete my old firewall rules, same result. Iptables -t nat -A POSTROUTING -o tun0 -j MASQUERADE Iptables -I FORWARD -i tun0 -o br0 -j ACCEPT Iptables -I FORWARD -i br0 -o tun0 -j ACCEPT Iptables -I FORWARD -i br0 -o vlan2 -j DROP I need to establish a SSH tunnel from outside to that router.Ĭan you help my out what to do to get that working or maybe know what causes that problem? Now I would like to prevent IP Leaks and use settings that lead every traffic through the VPN When I set my firewall settings to Setting B below, it is no problem to establish a SSH connection/tunnel. My problem is, with the Firewall settings A, it is not possible to establish a SSH connection from a remote IP to my router.
To prevent IP Leaks, I use the Firewall settings below which lead all the traffic either through my vpn or nowhere ( Firewall settings A) I have a router that goes into the internet.īehind that router there is another router with DDWRT (Build 23204) which is a seperate DHCP server and establishes a VPN connection. Posted: Wed 16:40 Post subject: Firewall settings to prevent IP Leak AND SSH to router
0 kommentar(er)
