OpenVPN allow two clients to connect to each other without using client-to-client globally

centos routing openvpn

I suggest you do the reverse: enable client-to-client and then use iptables to block all clients but the two you want to allow to talk to each other.


I know this question is old, but just to clarify that to new users that might still be visiting this page:

if you use client-to-client you can't actually use firewall, the server will not even see those packets at all as they never come back out from the OpenVPN server, so, since they are not reaching host layer, you will not be able to use the firewall as it won't be reached and your rules would be useless in that way.

Related

APK signing error : Failed to read key from keystore
How to find file accessed/created just few minutes ago
Difference between <xsd:all> and <xsd:sequence> in schema definition?
rails db:migrate vs rake db:migrate
python time + timedelta equivalent
Why (and when) do I need to use parentheses after sizeof?
Make the console wait for a user input to close
How do I run IDEA IntelliJ on Mac OS X with JDK 7?
How to use glyphicons in bootstrap 3.0
"For" loop first iteration
How can I call a javascript constructor using call or apply? [duplicate]
Create File If File Does Not Exist