[EMAIL PROTECTED] wrote:
I've tried a few, settled on guidedog, guarddog.
I still see no way of adding these to my firewall rules:
iptables -A INPUT -i tun+ -j ACCEPT
iptables -A FORWARD -i tun+ -j ACCEPT
for shorewall in /etc/shorewall/zones add a vpn zone
in /etc/shorewall/interfaces: (associate that zone with tun+)
tun+ vpn
and in /etc/shorewall/policy
make policys for your vpn zone:
vpn lan ACCEPT
lan vpn ACCEPT
seriously, use shorewall.
anyway - unless you are routing openvpn tunnels to lots of different
lans, you only need a tun0 interface (use the server-client mode).
if you want to route subnets behind the clients the ccd option is useful
for this.
dave
--
SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/
Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
