![](https://thechurchofmemes.com/pictrs/image/50763bc6-2015-4a4d-bbd8-778a514680d7.png)
![](https://lemmy.world/pictrs/image/8286e071-7449-4413-a084-1eb5242e2cf4.png)
1·
1 year agoIf they are on the same l2 network then your options are basically either to use nginx ACLs or a local firewall on the nginx host since the traffic wont traverse the firewall.
Something like iptables -I INPUT -s 1.2.3.0/24 -j DROP
on the nginx host should work
Can you share your firewall config? It could be that the firewall isn’t allowing packets to be forwarded from the tun/tap interface on the router to the LAN interface or vice versa.
Can you ping the ssh server from the phone?