On 2/12/2015 8:28 PM, Tom Eastep wrote: > On 2/12/2015 5:21 PM, Matthias F. Brandstetter wrote: >> Hello, I am running Shorewall 4.5.5.3 on a Debian machine. >> >> I have a firewall (10.8.0.1) connected to an internal server (10.8.0.2) >> via OpenVPN. On the firewall the VPN interface is called |tun0|. So in >> my shorewall configuration I have this: >> >> |$ cat interfaces >> #ZONE INTERFACE OPTIONS >> - lo ignore >> vpn tun+ optional >> net eth+ dhcp,physical=+,routeback,optional >>
I do notice that you apparently started with the Universal configuration, where you now have a two-interface one. So it would be good to remove the 'physical=+' from the OPTIONS list. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Dive into the World of Parallel Programming. The Go Parallel Website, sponsored by Intel and developed in partnership with Slashdot Media, is your hub for all things parallel software development, from weekly thought leadership blogs to news, videos, case studies, tutorials and more. Take a look and join the conversation now. http://goparallel.sourceforge.net/
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
