On 10/13/2014 10:46 AM, Paul Beriswill wrote: > Now, when I create rules for the OpenVPN_Ops interface, using > 'OPEN_VPN_OPS net' as 'Source' the rule never hits. > It doesn't appear > that the 'net' and 'address' aliases are being populated when the > connection is established. Is this correct?
I don't believe that macro works for OpenVPN interfaces. Remember, when you assign the interface you must set it to an IP type of "None" which is what that macro would have used to fill that macro. Manually specify the source of the traffic in the rules and you'll be OK. You could use aliases to define specific subnet(s) or groups of people based on the addresses you intend to assign via client-specific overrides. Jim _______________________________________________ List mailing list [email protected] https://lists.pfsense.org/mailman/listinfo/list
