Shorewall users - Nov 2005 - roadwarrior openvpn config issue

Hello,

I am having an issue with openvpn2 on shorewall 2.4.2 using roadwarrior 
configuration. If I use the "redirect-gateway" feature, I am unable to
give
my clients access the internet using the tun interface. Can someone please 
point where I am going wrong? Anyhelp will be greatly appreciated. Thanks in 
advance!

Anish Srivastava

-------
My config.

/etc/shorewall/tunnels
openvpn:1194            net     0.0.0.0/0

/etc/shorewall/policy
road            net             ACCEPT

/etc/shorewall/masq
tun+                    eth1

/etc/shorewall/interfaces
road    tun+            detect





-------------------------------------------------------
SF.Net email is sponsored by:
Tame your development challenges with Apache''s Geronimo App Server.
Download
it for free - -and be entered to win a 42" plasma tv or your very own
Sony(tm)PSP.  Click here to play: http://sourceforge.net/geronimo.php

On Friday 04 November 2005 17:13, Anish wrote:
> Hello,
>
> I am having an issue with openvpn2 on shorewall 2.4.2 using roadwarrior
> configuration. If I use the "redirect-gateway" feature, I am
unable to give
> my clients access the internet using the tun interface. Can someone please
> point where I am going wrong? Anyhelp will be greatly appreciated. Thanks
> in advance!
>
> Anish Srivastava
>
> -------
> My config.
>
> /etc/shorewall/tunnels
> openvpn:1194            net     0.0.0.0/0
>
> /etc/shorewall/policy
> road            net             ACCEPT
>
> /etc/shorewall/masq
> tun+                    eth1
That''s backwards. And if you reverse the columns the way they are, it
won''t
work.

You need:

eth1          <subnet associated with tun+>

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep@shorewall.net
PGP Public Key   \ https://lists.shorewall.net/teastep.pgp.key