OPNsense Forum

English Forums => Virtual private networks => Topic started by: dcol on October 15, 2021, 01:23:36 am

Title: 2FA for specific ports
Post by: dcol on October 15, 2021, 01:23:36 am
I am running remote desktop software that I am now required to use 2FA. Is there a way to tunnel specific ports using 2FA via OpenVPN or other method? This is a new area for me, so be gentle. These ports are now NAT'ed to the specific IP's. I am told they now need 2FA. Is this even possible?
Thanks all.
Title: Re: 2FA for specific ports
Post by: bartjsmit on October 15, 2021, 07:27:49 am
You can run (virtually) as many OpenVPN servers as you like. Create firewall rules to allow RDP only for the tunnel(s) with 2FA.

Bart...
Title: Re: 2FA for specific ports
Post by: dcol on October 15, 2021, 07:44:03 pm
Any tutorials to get me started.
Title: Re: 2FA for specific ports
Post by: bartjsmit on October 15, 2021, 10:32:37 pm
These should get you going:

https://docs.opnsense.org/manual/two_factor.html
https://kirkg.us/posts/building-an-openvpn-server-with-opnsense/
https://openvpn.net/community-resources/reference-manual-for-openvpn-2-4/
Title: Re: 2FA for specific ports
Post by: dcol on October 15, 2021, 11:04:59 pm
Thanks