I want to block access to certain websites/IP's for all clients connected to VPN (pptpd or OpenVPN).
This rule:
iptables -A OUTPUT -m state --state NEW,ESTABLISHED,RELATED -d IP_address -j REJECT
is working only locally.
Server (ping test) can't access blocked IP but clients via VPN can.
How can I block all traffic to specified IP for VPN clients?