Hi Tom,
Ok I'm sorry, I truly apologize here about this...
YES I'm all ears you certainly know better then me...
Can you please show me how I should write the tunnels?
And then what would I change in the policy since I don't need to mess with
it, would I then remove the first line?
# Block this machine from accessing NET ZONE accept for exceptions in
/etc/shorewall/rules
*#$FW net DROP info*
# Allow NET Zone when not on VPN - (Allow all connection requests from the
firewall to the Internet)
*$FW net ACCEPT
*
# Allow this machine to access the VPN ZONE for everything
$FW vpn ACCEPT
THANKS
On Thu, Jul 28, 2011 at 12:44 PM, Tom Eastep <[email protected]> wrote:
> On Thu, 2011-07-28 at 12:28 -1000, Das wrote:
>
> > This is what I've been trying to explain, with just the interface,
> > policy and zones I can make this work on any distro, I don't need
> > rules to connect to OpenVPN or stay online with it...
>
> And we've been trying to explain that if you add an entry to the tunnels
> file, then it will work on any distro and you won't have to screw around
> with changing to policy file at all. But it is, of course, up to you.
>
> -Tom
> --
> Tom Eastep \ When I die, I want to go like my Grandfather who
> Shoreline, \ died peacefully in his sleep. Not screaming like
> Washington, USA \ all of the passengers in his car
> http://shorewall.net \________________________________________________
>
>
>
> ------------------------------------------------------------------------------
> Got Input? Slashdot Needs You.
> Take our quick survey online. Come on, we don't ask for help often.
> Plus, you'll get a chance to win $100 to spend on ThinkGeek.
> http://p.sf.net/sfu/slashdot-survey
> _______________________________________________
> Shorewall-users mailing list
> [email protected]
> https://lists.sourceforge.net/lists/listinfo/shorewall-users
>
>
------------------------------------------------------------------------------
Got Input? Slashdot Needs You.
Take our quick survey online. Come on, we don't ask for help often.
Plus, you'll get a chance to win $100 to spend on ThinkGeek.
http://p.sf.net/sfu/slashdot-survey
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
