I having a problem with OpenVPN when I try to query my BIND9 server(s).
I have an option in my BIND config that restricts querying ability to what is defined in the ACL lists in the config file.
The problem I am having is OpenVPN has an ACL entry but it is not allowing it though with the IP information I have given it.
The ACL is for 172.16.0.0/24 which is my OpenVPN subnet. But it appears my computer when talking back to the network after the vpn is established is using a /30 subnet mask which throws off my acl. I tried making an acl with the same address but a /30 and it did no good.
Anyone got any idea of how I can work around this?