Inferring and hijacking VPN-tunneled TCP connections

keropiko · December 18, 2021, 09:40:47 PM

Hello all,

I would like to know, regarding this CVE-2019-14899 vulnerability, if there is a way to apply to opnsense a fix for wireguard, similar to the fix for linux distributions with iptables

Quoteiptables -t raw -I PREROUTING ! -i wg0 -d 10.182.12.8 -m addrtype ! --src-type LOCAL -j DROP

Is there any firewall setting i could apply to my wireguard or openvpn interface?

Thank you

Inferring and hijacking VPN-tunneled TCP connections

keropiko

December 18, 2021, 09:40:47 PM