Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!


How to disable Port Scanning on OpenVPN
New on LowEndTalk? Please Register and read our Community Rules.

All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.

How to disable Port Scanning on OpenVPN

BellaBella Member

Hi. I currently run a free VPN service but I have been getting a few abuse reports lately regarding users that are connecting to the VPN and running port scanning tools on big organizations and Universities.

Is there a way I can prevent port scanning through IPTables or other means?

I am not sure how to find out which user is doing it either.

I currently have OpenVPN installed on Centos 5 32 bit.

Comments

  • Stop running a free VPN service and start charging a minor fee every month.

    A free VPN is only asking for trouble.

  • BellaBella Member

    @darknyan said:
    Stop running a free VPN service and start charging a minor fee every month.

    A free VPN is only asking for trouble.

    Even if I were to have a paid vpn service, how would I block it?

    There's no way to guarantee even a paid user would not run a port scanner.

    It can also be the case where their PC is infected and it is not the user that is running these malicious port scans.

    That's why it's best to block it all together.

  • said: I am not sure how to find out which user is doing it either.

    Look at the logs?

  • tchentchen Member

    Filter out based on --dport then. If you want the freedom of all ports open, then you'll have to install a gateway IDS and start logging and alerting.

Sign In or Register to comment.