Thank you for the reply, David.
My goal here is to prevent any leakage should there be an unexpected disconnection in
openvpn. I hear you can solve this by configuring firewall to kill all traffic when
openvpn fails.
So far all I've done is to type from public zone (default):
# firewall-cmd --add-service openvpn
# firewall-cmd --permanent --add-service openvpn
# firewall-cmd --add-masquerade
# firewall-cmd --permanent --add-masquerade
# reboot
Should I have done above in the drop zone???
I am clueless as to what I'm doing. lol Help please.