On 12/13/10 3:48 AM, sond wrote: > > - From OpenVPN docs I know that in the bridged mode the br0 interface > must be not firewalled. So in my case is useless a firewall?
In the scenarios covered by that article, firewalling is not required. If you need to firewall traffic to/from the remote hosts, then see http://www.shorewall.net/bridge-Shorewall-perl.html. > > - Anyway using shorewall is corretc to put in the intefaces file for > zone/interface/broadcast/options the only line "lan br0 > 192.168.100.255 routeback" with no net zone? That's fine.\ > > My doubt is: if I have not to firewall the br0 interface I've to put > in the policy file the ACCEPT policy to lan->net and net->lan and > consequently no control at all. Again, see the URL above. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Oracle to DB2 Conversion Guide: Learn learn about native support for PL/SQL, new data types, scalar functions, improved concurrency, built-in packages, OCI, SQL*Plus, data movement tools, best practices and more. http://p.sf.net/sfu/oracle-sfdev2dev
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
