On 11/18/12 7:10 PM, f q wrote: > I'm looking to have my Debian (ver 6.0.6) server act as a router > between network1 (eth1, 10.0.0.0/8) and network2 (eth0, > 192.168.0.0/24) while providing Internet access to network1 via > OpenVPN. I would like to do this in a way that prevents network1 from > accessing the Internet in any way except for OpenVPN. It should also > have access to network2 (I have some Samba shares it should have > access to). >
To accomplish this goal, you must use Shorewall's Multi-ISP capability (http://www.shorewall.net/MultiISP.html). One provider will be associated with eth0 while the other will be associated with tun0. You probably want to make eth0 'required' and tun0 'optional' in /etc/shorewall/interfaces. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Monitor your physical, virtual and cloud infrastructure from a single web console. Get in-depth insight into apps, servers, databases, vmware, SAP, cloud infrastructure, etc. Download 30-day Free Trial. Pricing starts from $795 for 25 servers or applications! http://p.sf.net/sfu/zoho_dev2dev_nov
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
