We're trying to setup a openvpn server on centos 6.
We have blocked all IP adresses except a couple in a whitelist via /etc/hosts.deny, also we did the same with csf.deny (except for the whitelist).
This block seems to be working, can't reach the machine from a non-whitelisted ip adres by ssh.
However, when we go to the openvpn server from the same non-whitelisted ip (via 943) we can login the web panel.
How can we block all traffic including openvpn from everywhere except for the ips in our whitelist ?