Archive > 18.1 Legacy Series

Unbound and OpenVPN problem

<< < (2/2)

jjstecchino:
I have an OpenVPN pass all rule.

I believe the problem is that OPNSense adds an ACL entry in unbound just for the openvpn server i.e xx.xx.xx.1/32 but not for the tunnel network xx.xx.xx.0/24. Don't know if this is  by design or a bug. If it is by design something should be stated in the OpenVPN setup doc page that an ACL entry should be added in unbound for the tunnel network.

I don't see the drawback to automatically add the entire tunnel network (xx.xx.xx.xx/24 or whatever net mask may be) instead of just the openvpn server (xx.xx.xx.1/32) to unbound ACL when an OpenVPN server is created/enable. I think this second option is more intuitive and lead to less head scratching.

Anyway adding the entire tunnel network to the unbound ACL solves the problem.

Baliste:
Thanks.

I faced the same problem and I added the OpenVPN tunnel network to the unbound ACL, and it is working now.

Frédéric

Navigation

[0] Message Index

[*] Previous page