pfSense OpenVPN Interface Rules


I have a question for the experts here.

We have OpenVPN up and running and under the interface the Any/Any rule is defined. If someone was to “try” to come in under a different “tunnel network” than what is setup (say: / .7.0 ), would it be possible for them to enter in the network? Say using: as the tunnel network which is not setup?

If so, how could I restrict that interface to allow only the predefined tunnel networks I want to allow on that interface?

Tunnels that don’t exist on your pfsense system can not be used.

1 Like