From owner-freebsd-questions@freebsd.org Sun Aug 27 01:32:16 2017 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 862EADE086B for ; Sun, 27 Aug 2017 01:32:16 +0000 (UTC) (envelope-from duane@nofroth.com) Received: from mail-it0-x22a.google.com (mail-it0-x22a.google.com [IPv6:2607:f8b0:4001:c0b::22a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 53E5783F57 for ; Sun, 27 Aug 2017 01:32:16 +0000 (UTC) (envelope-from duane@nofroth.com) Received: by mail-it0-x22a.google.com with SMTP id f1so7769755ith.0 for ; Sat, 26 Aug 2017 18:32:16 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nofroth.com; s=google; h=cc:subject:to:references:from:message-id:date:user-agent :mime-version:in-reply-to:content-language:content-transfer-encoding; bh=n4bkUMDt1qHgQHE7XaMLriotpTI+NcpsRcRxTcsDjbc=; b=L/OhbA6siZezpVeyfj5DDPFnVOL/KIxznZlJPd7JHlG9cW+Gzdr94b2VDdIeP1lMDv +d/FXaq+Uj6Km5MLwZm/65E+06puX2e+5MTKZbFt8ph4N1xdAKE3kKJyoQbytV3ImflZ JtgBZh2KbUxo3VADHSfdMX0aciWw0KOVb0aOwG6O49dxxfYwiQ3CFvPDw/8imjf9mhfz AkMBZbz6BeWR8Ek+/9jqQXmIb6usnspxH/khGT2dmoB7YfZDkUuChEGrkgvDKtLiZaCn Eox7xpZAHZMBHzW6nt6RCfhrDwfmi0MDb3R6AK8AaZETEnzcf1ugDC2KWdlrSxd61zfK 2xJQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:cc:subject:to:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-language :content-transfer-encoding; bh=n4bkUMDt1qHgQHE7XaMLriotpTI+NcpsRcRxTcsDjbc=; b=mYws41/2TFXskybf1o3lIYCJ/VKEX1rRbZW2gbIu9BpoZYdLZwluIZI0KNRCGT+ZSG dD5ld0fB7gq7ZQ8EZqHnLyV43buMoIaGx7xkjUeN7LEiA7w1e6oE5j77wnoyZF1D/gYD 9leX6tNTqrJYWTlTw1ZD+2TarvCjA1hO0Np4n9hnS/FmTBzN8mia/pM7kOS73LM/DTft mHNA//2coKQEG781OIRlFR13A2nOIPG0TS+57gsZf9v6CRJTxQTO6It5gSDv8MksDg+4 fmMLotOShVqqTBZthhjL32SngERGQ/wsp99PV/iSVgv2hECgbnRaS2Q7/u7gb/Xdk/RJ KSVw== X-Gm-Message-State: AHYfb5jvK1RphiVJrLmGrrDhh/ZMKdH+fPsVdQue0iIt7nPFG/8m1ZuH zZg4snx24vtqGhngvbcymA== X-Received: by 10.36.55.138 with SMTP id r132mr2265830itr.59.1503797535255; Sat, 26 Aug 2017 18:32:15 -0700 (PDT) Received: from [10.8.8.76] ([184.75.212.77]) by smtp.gmail.com with ESMTPSA id n90sm4476913ioe.72.2017.08.26.18.32.13 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Sat, 26 Aug 2017 18:32:14 -0700 (PDT) Cc: duane@nofroth.com Subject: Re: STUMPED: Setting up OpenVPN server on FreeBSD (self.freebsd) To: freebsd-questions@freebsd.org References: From: Duane Whitty Message-ID: <62dc30c4-6f8b-0558-60de-a52df3b68903@nofroth.com> Date: Sat, 26 Aug 2017 22:32:08 -0300 User-Agent: Mozilla/5.0 (X11; Linux i686; rv:52.0) Gecko/20100101 Thunderbird/52.2.1 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8 Content-Language: en-US Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 27 Aug 2017 01:32:16 -0000 On 17-08-26 05:12 PM, Fongaboo wrote: > > I switched from IPFW to PF to try the config described here: > > https://forums.freebsd.org/threads/59223/#post-339781 > [snip] I assume you also know that AWS blocks outgoing traffic on any non-default VPC. So you might want to include your AWS routes, security policies (firewall rules) and AWS ACLs if you've configured them. It doesn't matter how you have configured your FBSD instance if AWS won't let your traffic leave the network. Best Regards, Duane -- Duane Whitty duane@nofroth.com