On Mon, Dec 25, 2006 at 12:44:22PM +0100, roman wrote: > > For only three sites then there's little argument - just go meshed. > > Howeveer, if you have any expectations of adding more sites, sit down > > before you start and think about your addressing/naming schemes - > > it's easier to be logical from the start than to renumber networks > > later (been there, got the T-shirt !). > > thank you for your explanations! > > I will do a meshed network for this 3 sites. But I think it could be possible > to consolidate the configuration a bit: > > Except for the routes all configurations are nearly the same. So if all the > routes were pushed to the peers I would have to configure them only once for > each network. The question is: Is it possible to push configurations in both > directions?
This is really an openvpn question, not a shorewall one, but anyway... "push" and "pull" are intended for server/dumb-client mode, they aren't appropriate here. Use "up" instead, so all the configuration for a given host is stored on that host. Something like: ifconfig 10.1.0.2 10.1.0.1 up ip route add 10.2.0.0/24 via 10.1.0.1 (Filling in the appropriate addresses) ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
