Am 15.08.2014 um 01:17 schrieb Michael Kress: > > Uhm, one case has added to my config and I cannot make it work. > > One host in the DMZ zone (192.168.0.15) which is connected over eth0 > (192.168.0.1) should go out over tun1 (vpn) masqueraded as x.x.x.245, > with all protocols and ports.
Got it working: masq file entry, 1st line: tun1 192.168.0.15 x.x.x.245 rtrules file added one line, notably the first mention of the hosts on the 192.168.0.0/24 network: 192.168.0.15 - ipev 20000 No mark usage, no further magic :) Kind regards Michael ------------------------------------------------------------------------------ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
