On Thu, Feb 25, 2021 at 09:17:11AM +0100, Jan Just Keijser wrote: > send raw packets. On linux this is possible, not sure about Windows, but > it's definitely a no-no on Android or iOS.
If DDoS or cracking attempt is a problem with your setup, and port-knocking is not applicable, why not add a simple web interface which allows by IP? You could store the credentials in the browser. Obviously may need some refreshing especially with CGNAT and might need to sit on the exact same IP to avoid the CGNAT fan-out issue, but it should work. And no, port-knocking and other things have nothing to do in OpenVPN, in my opinion. Keep the UNIX way of things: one tool, one purpose. _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
