open VPN vs. policy manager

robbiefbg
robbiefbg Posts: 3
in Business Security

Hi,

 

how to enable Open VPN connection (Open VPN app in win10) in F-secure policy manager?

 

I have tried to setup firewall service for Open vpn (udp (17), initiator ports 1024-65535, responder port 1194) and then add that service to FW rules, but no success.

 

Please help.

Like

Comments

  • Rob-K
    Rob-K Posts: 33

    Responder port is 1194 UDP - old versions of OpenVPN used port 5000

    Sethu
    1Like
  • robbiefbg
    robbiefbg Posts: 3

    vpn app is actual, from pfsense fw, so responder port is correct - 1194...

    Like
  • MJ-perComp
    MJ-perComp Posts: 1,101 Superuser

    please send a screenshot of your ruleset.

    Like
  • robbiefbg
    robbiefbg Posts: 3

    here they are:Screenshot 2018-11-20 14.56.35.pngScreenshot 2018-11-20 14.56.05.png

    Like
  • MJ-perComp
    MJ-perComp Posts: 1,101 Superuser

    Your rule to allow "outbound" OpenVPN is obsolete, as the third rule (standard) allows all outbound traffic for UDP and TCP already.

    If this is the Server side you need to allow "inbound". just reverse the arrow.
    BUT
    If you are using Application Control the App should be allowed by that "Allow inbound traffic for known applications"
    Also check if OpenVPN was already blocked. You might then need to remove the entry (to make the defaults work) or manually allow it.

    Like
This discussion has been closed.

Categories