By popular demand, the Shorewall 3.0 documentation now includes a working example of OpenVPN bridging (and if you receive this message, the example works! :-) http://www1.shorewall.net/3.0/OPENVPN.html There is nothing in the example that won''t work under Shorewall 2.x.x. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
On Tuesday 11 October 2005 17:40, Tom Eastep wrote:> By popular demand, the Shorewall 3.0 documentation now includes a > working example of OpenVPN bridging (and if you receive this message, > the example works! :-) > > http://www1.shorewall.net/3.0/OPENVPN.html > > There is nothing in the example that won''t work under Shorewall 2.x.x.Two corrections: a) There was a typo -- "openvpn-server" should have been "openvpnserver" in the /etc/shorewall/tunnels file. I''ve corrected it on my site and the corrections should propagate to all mirrors shortly. b) Only 2.4.4-2.4.5 support that tunnel type -- users of earlier versions will need to stick with the ''openvpn'' tunnel type. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
Tom, another typo in http://www1.shorewall.net/3.0/SimpleBridge.html at: "The default gateway for hosts in the local segments will be 192.168.1.254 — the IP address of the bridge itself." ...IP address in example above it for br0 is 10.0.1.254 On Oct 12, 2005, at 10:11 AM, Tom Eastep wrote:> On Tuesday 11 October 2005 17:40, Tom Eastep wrote: > >> By popular demand, the Shorewall 3.0 documentation now includes a >> working example of OpenVPN bridging (and if you receive this message, >> the example works! :-) >> >> http://www1.shorewall.net/3.0/OPENVPN.html >> >> There is nothing in the example that won''t work under Shorewall >> 2.x.x. >> > > Two corrections: > > a) There was a typo -- "openvpn-server" should have been > "openvpnserver" in > the /etc/shorewall/tunnels file. I''ve corrected it on my site and the > corrections should propagate to all mirrors shortly. > > b) Only 2.4.4-2.4.5 support that tunnel type -- users of earlier > versions will > need to stick with the ''openvpn'' tunnel type. > > -Tom > -- > Tom Eastep \ Nothing is foolproof to a sufficiently talented fool > Shoreline, \ http://shorewall.net > Washington USA \ teastep@shorewall.net > PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key >
Brent Schwartz wrote:> Tom, another typo in http://www1.shorewall.net/3.0/SimpleBridge.html at: > "The default gateway for hosts in the local segments will be > 192.168.1.254 — the IP address of the bridge itself." > ...IP address in example above it for br0 is 10.0.1.254 >Thanks. I have corrected the typo in both the 3.0 and 2.x documentation at www1.shorewall.net and at shorewall.sf.net. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key