Re: openvpn

To: debian-user@lists.debian.org
Cc: max@fuckaround.org
Subject: Re: openvpn
From: Joe <joe@jretrading.com>
Date: Mon, 23 Oct 2017 22:03:07 +0100
Message-id: <[🔎] 20171023220307.61a04f96@jresid.jretrading.com>
In-reply-to: <[🔎] fdca68a7-1201-4f10-397f-70f0f87a9ef5@fuckaround.org>
References: <[🔎] fdca68a7-1201-4f10-397f-70f0f87a9ef5@fuckaround.org>

On Mon, 23 Oct 2017 21:03:30 +0200
Pol Hallen <deben@fuckaround.org> wrote:

> Hello all :-)
> 
> maybe I've a simple question...
> 
> I've an openvpn server 10.0.0.1/24 and a connected client (gateway):
> I use vpn to make backup.
> 
> On this client I've samba and clients in same lan can connect to it.
> 
> The problem: these clients can see also all netbios across vpn
> (10.0.0.1/24)
> 
> what I should blocks using iptables?
> 

Everything. Only allow through what you want to allow.

Alternatively, use a different method than VPN for backups. When you
say 'backup', are you simply synchronising SMB shares, or are you
making a backup file and copying it across the VPN? If the latter,
then SSH or another secure file transfer protocol can do the job
without linking the networks together fully as a VPN does.

-- 
Joe

Reply to:

References:
- openvpn
  - From: Pol Hallen <deben@fuckaround.org>

Prev by Date: Re: Can imagemagick really be safely purged or removed?
Next by Date: Re: Why does resolv.conf keep changing?
Previous by thread: openvpn
Next by thread: Weird bug (microphone / ALSA / PulseAudio related)
Index(es):
- Date
- Thread