Hey guys, I have been playing around with v2.2 and added openvpn, which appears to be running, and of course it creates a tun interface. How are people handling firewalling the vpn clients from other segments of their network?? Are you able to do so via xorpsh?
It appears from the logfiles that xorp is trying to kill the tun interface: Oct 16 14:25:58 localhost xorp_static_routes: IfMgrVifRemove::execute(), removing vif entry: tun0 Oct 16 14:25:58 localhost xorp_rib: IfMgrVifRemove::execute(), removing vif entry: tun0 Oct 16 14:25:58 localhost xorp_rib: [ 2007/10/16 14:25:58 ERROR xorp_rib:4574 RIB +330 /home/autobuild/builds/OFR/2007-08-23-1113/ofr/xorp/xorp/rib/vifmanager.cc updates_made ] Cannot delete vif tun0 from the set of configured vifs: Failed to delete VIF "tun0" from Unicast IPv4 RIB, and failed to delete VIF "tun0" from Multicast IPv4 RIB, and failed to delete VIF "tun0" from Unicast IPv6 RIB, and failed to delete VIF "tun0" from Multicast IPv6 RIB Thoughts?? I know I hear (and have for sometime) that a ton of people have been using vyatta and openvpn, but I see a dearth of documentation on such things. And while it seemed really simple, I can't help but imagine that there are pitfalls that I have yet to see, anyone have notes jotted down? Thanks, David Nalley _______________________________________________ Vyatta-users mailing list [email protected] http://mailman.vyatta.com/mailman/listinfo/vyatta-users
