And I have to add the following rule explicitly to /etc/shorewall/rules
ACCEPT net fw udp 5555
to allow traffic on UDP port 5555.
Tom could you help me to understand why I need this rule here eventhough I have defined it in 'tunnels' file?
I spoke too soon.
This rule will be required if the remote endpoint is using a local port other than 5555 (the Shorewall-generated rules for OpenVPN assume that both the source port and the destination port will be 5555 if that's what you specify).
You can eliminate the need for the rule by changing the tunnel declaration to:
generic:udp:5555 net 0.0.0.0/0
-Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED]
-------------------------------------------------------
This SF.Net email is sponsored by Sleepycat Software
Learn developer strategies Cisco, Motorola, Ericsson & Lucent use to deliver higher performing products faster, at low TCO.
http://www.sleepycat.com/telcomwpreg.php?From=osdnemail3
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
