On 5/26/2015 12:36 PM, PGNd wrote: > Tom > > On Tue, May 26, 2015, at 12:15 PM, Tom Eastep wrote: >> Is the OpenVPN tunnel also a provider? > yes, it is. > Then I think that the most straight-forward thing to do is:
a) Make the OpenVPN interface 'optional' with no 'wait=' specified in the interfaces file. b) Start OpenVPN after Shorewall-lite. c) Use OpenVPN scripting to enable the interface after the tunnel is up (shorewall-lite enable tunX) and to disable it when the tunnel goes down (shorewall-lite disable tunX). -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
