On 5/23/11 9:04 PM, Chris Morley wrote:> Hi, i connect to the internet over my eth4 interface using pppoe.
>
> The internet always comes on ppp0.
>
> I am trying to setup an L2TP/IPSEC VPN and i am reading
> http://www.shorewall.net/IPSEC-2.6.html#RW-L2TP
>
> I notice in the example the interfaces file is given as:
>
> #ZONE INTERFACE BROADCAST OPTIONS
> net eth0 detect routefilter
> loc eth1 192.168.1.255
> l2tp ppp+ -
> #LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
>
>
> My current interface as currently used on my firewall is below:
>
> #ZONE INTERFACE BROADCAST OPTIONS
> net ppp0 - dhcp,tcpflags,nosmurfs,logmartians
> loc eth0 detect
> dhcp,tcpflags,nosmurfs,routefilter,logmartians
>
> My question is if i define ppp+ for the l2tp zone will my
''net'' zone be
> included in the l2tp zone?
No.>
> How would i go about setup with ppp0 as my WAN interface as opposed to
> eth0 as in the example or does the more specific match of ppp0 override
> ppp+?
It does, so long as you keep your zones file in its current order.
-Tom
--
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car
http://shorewall.net \________________________________________________
------------------------------------------------------------------------------
vRanger cuts backup time in half-while increasing security.
With the market-leading solution for virtual backup and recovery,
you get blazing-fast, flexible, and affordable data protection.
Download your free trial now.
http://p.sf.net/sfu/quest-d2dcopy1