After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.
Bug 767288 - RFE: Route *everything* to VPN (block access to local network)
RFE: Route *everything* to VPN (block access to local network)
Status: RESOLVED OBSOLETE
Product: NetworkManager
Classification: Platform
Component: VPN (general)
unspecified
Other Linux
: Normal normal
: ---
Assigned To: NetworkManager maintainer(s)
NetworkManager maintainer(s)
Depends on:
Blocks:
 
 
Reported: 2016-06-06 13:34 UTC by David Woodhouse
Modified: 2020-11-12 14:27 UTC
See Also:
GNOME target: ---
GNOME version: ---


Description David Woodhouse 2016-06-06 13:34:38 UTC 
For security reasons we are being requested to block access even to the immediate local subnet, while on the VPN.

Only traffic for the VPN server should go out on the physical interface, and *nothing* else (except ND or ARP for the local gateway through which we reach the VPN server of course).

I can handle the VPN client side of this, setting a "block local subnets" config boolean in the routing request I send back from nm-openconnect-service-openconnect-helper. But first we need to implement it on the NM side.
Comment 1 André Klapper 2020-11-12 14:27:09 UTC 
bugzilla.gnome.org is being shut down in favor of a GitLab instance. 
We are closing all old bug reports and feature requests in GNOME Bugzilla which have not seen updates for a long time.

If you still use NetworkManager and if you still see this bug / want this feature in a recent and supported version of NetworkManager, then please feel free to report it at https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/issues/

Thank you for creating this report and we are sorry it could not be implemented (workforce and time is unfortunately limited).