GitLab/ocserv
1
0
Fork 0
mirror of https://gitlab.com/openconnect/ocserv.git synced 2026-02-10 08:46:58 +08:00
Code Issues Packages Projects Releases Wiki Activity

Enhanced configuration option 'restrict-user-to-ports'

Browse Source 
This enhancement allows to negate the rules and allow the user connecting
to all ports except the specified.
This commit is contained in:
Nikos Mavrogiannopoulos
2015-12-07 11:15:54 +01:00
parent 8019490511
commit 14d19b3e9a
7 changed files with 104 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
doc/sample.config
View File

@@ -480,6 +480,9 @@ no-route = 192.168.5.0/255.255.255.0
# or in the per-user configuration.
#restrict-user-to-ports = "tcp(443), tcp(80), udp(443), sctp(99), tcp(583), icmp(), icmpv6()"
# You could also use negation, i.e., block the user from accessing these ports only.
#restrict-user-to-ports = "!(tcp(443), tcp(80))"
# When set to true, all client's iroutes are made visible to all
# connecting clients except for the ones offering them. This option
# only makes sense if config-per-user is set.