Lito Kusnadi wrote: > I am building a openvpn gateway/firewall. > I have 2 zones: vsite and vmobile (for vpn site2site and vpn roadwarrior > respectively). And in /etc/shorewall/interfaces, I define: > vsite tun+ > vmobile tun9 > > In Openvpn, I have an instance running to serve roadwarrior on tun9. While > the other tun interfaces (tun0 - tun8) are for sites, would rules/policy > defined for vsite will be valid for vmobile? > > If that's the case, is there a way so that vsite zone (a group of tunnels) > and vmobile zone separate? I like the idea of being able to do: > vsite tun+,!tun9 (something like this), don't know if it is possible.
Can you elaborate? I'm very unclear about what you are trying to accomplish. > > Shorewall version: shorewall-4.2.9-1 > Shorewall-shell or Shorewall-perl? -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
