Hi, On Tue, Jan 12, 2016 at 01:41:09PM +0100, David Sommerseth wrote: > > In the FORWARD chain, the easiest approach - and reasonably secure, > > unless you distrust your VPN clients - is to permit everything > > coming in via tun0 > > > > iptables -I INPUT -i tun0 -j FORWARD > > > > (or similar to this, typing from memory) > > I presume Gert meant: > > iptables -I FORWARD -i tun0 -j ACCEPT
Right. Should drink more coffee before posting in the morning.
thanks,
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany g...@greenie.muc.de
fax: +49-89-35655025 g...@net.informatik.tu-muenchen.de
signature.asc
Description: PGP signature
------------------------------------------------------------------------------ Site24x7 APM Insight: Get Deep Visibility into Application Performance APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month Monitor end-to-end web transactions and take corrective actions now Troubleshoot faster and improve end-user experience. Signup Now! http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
