With a lot of help over on the OpenVpn lists. turns out that an 'iroute-ipv6' was needed in the REMOTE-SERVER's OpenVPN client-specific configuration.
Once we got that iroute in there I was finally able to see the firewall traffic and open up the right Shorewall rules for allowing whatever from the Client side LAN. So now all my IPv4 traffic goes in & out locally through my ISP and all my IPv6 traffic travels instead over the VPN -> VPS. Funny how it always makes common sense AFTER you get it figured out :-} - John ------------------------------------------------------------------------------ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
