OPNsense Forum

English Forums => Tutorials and FAQs => Topic started by: imaddaou on September 14, 2020, 09:50:10 pm

Title: VPN - Restrict users access using MAC address Authentication
Post by: imaddaou on September 14, 2020, 09:50:10 pm: Dear OPNsense community,

My goal is to build an VPN solution using MAC address restriction of manual ACL; plus Muti-factor authentication.

I was reading post-auth script using OpenVPN at https://openvpn.net/vpn-server-resources/access-server-post-auth-script-host-checking/

However, I couldn't find any guidance for post-auth script mentioned under your documentation. Is this feature available for the community edition of OpenVPN or is it ONLY for Access Server? If it does, please guide me in the right direction to configure it using OPNsense, If it's not available for community edition of OpenVPN, what are my choices? Is it available with other types of VPNs?

Your time and guidance will be highly appreciated; I look forward for your response at your earliest convenience.

Thank you!

Imad
Title: Re: VPN - Restrict users access using MAC address Authentication
Post by: errored out on February 02, 2021, 10:35:45 am: What you are looking for is not feasible. The layers are different. You could create ACLs for IPs and (configure the firewall to use MFA) use the local server for authentication.

I know you can use Pre, auth, and post for squid and I am assuming others. These may shed some light on your question.

https://forum.opnsense.org/index.php?topic=15754.0
https://forum.opnsense.org/index.php?topic=6516.msg27986#msg27986

SMF 2.0.19 | SMF © 2021, Simple Machines
Privacy Policy