[Shorewall-users] second VPN in bridge mode

Tue, 10 Dec 2013 05:45:20 -0800 

Hi to all

I have a vpn server configured in bridge more working perfectly for
over a year .

I need to add a new bridge to it now, and I really not shore what I
amd doing wrong !

My /etc/openvpn contains 2 files :

/etc/openvpn/bridge.conf

remote 0.0.0.0
dev tap0
secret /etc/openvpn/bridge.key

/etc/openvpn/cajamar.conf

port 1195
remote 0.0.0.0
dev tap1
secret /etc/openvpn/cajamar.key

and my /etc/network/interfaces contains this :

# The loopback network interface
auto lo
iface lo inet loopback

# The internet network interface
auto eth1
iface eth1 inet static
    address 186.231.3.203
    netmask 255.255.255.248
    broadcast 186.231.3.207
    gateway 186.231.3.201

# The bridged vpn interface for Cenno
auto br0
iface br0 inet static
    pre-up /usr/sbin/openvpn --mktun --dev tap0
    pre-up /usr/sbin/brctl addbr br0
    address 172.16.0.4
    network 172.16.0.0
    broadcast 172.16.255.255
    netmask 255.255.0.0
    post-up /sbin/ip link set tap0 up
    post-up /usr/sbin/brctl addif br0 tap0
    post-up /sbin/ip link set eth0 up
    post-up /usr/sbin/brctl addif br0 eth0
    post-down /usr/sbin/brctl delbr br0
    post-down /usr/sbin/openvpn --rmtun tap0
    post-down /sbin/ip link set eth0 down

# The bridged vpn interface for Cajamar
auto br1
iface br1 inet manual
    pre-up /usr/sbin/openvpn --mktun --dev tap1
    pre-up /usr/sbin/brctl addbr br1
    post-up /sbin/ip link set tap1 up
    post-up /usr/sbin/brctl addif br1 tap1
    post-up /sbin/ip link set eth3 up
    post-up /usr/sbin/brctl addif br1 eth3
    post-down /usr/sbin/brctl delbr br1
    post-down /usr/sbin/openvpn --rmtun tap1
    post-down /sbin/ip link set eth3 down


There is no error msg in the log in any os 3 servers ...

The old one, ( refered just as "brigde"  ) still working fine, the new
one ( refered as "cajamar"  are not working ....

Any help will be welcome .... thanks in advance ...


Fábio Rabelo

Attachment: vpn.rar
Description: application/rar

------------------------------------------------------------------------------
Sponsored by Intel(R) XDK 
Develop, test and display web and hybrid apps with a single code base.
Download it for free now!
http://pubads.g.doubleclick.net/gampad/clk?id=111408631&iu=/4140/ostg.clktrk
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Reply via email to