extern/shorewall_code
1
0
Fork 1
mirror of https://gitlab.com/shorewall/code.git synced 2025-01-09 15:18:12 +01:00
Code Issues Packages Projects Releases Wiki Activity

Improve tunnels manpage

Browse Source 
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@5251 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
This commit is contained in:
teastep 2007-01-18 00:26:34 +00:00
parent ac3bb774b4
commit 8fc7dfe2d7
1 changed files with 22 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

30
manpages/shorewall-tunnels.xml
View File

@ -32,10 +32,10 @@
<variablelist> <variablelist>
<varlistentry> <varlistentry>
<term><emphasis role="bold">TYPE</emphasis> — {{<emphasis <term><emphasis role="bold">TYPE</emphasis> — {<emphasis
role="bold">ipsec</emphasis>|<emphasis role="bold">ipsec</emphasis>[<emphasis
role="bold">ipsecnat</emphasis>}[<emphasis
role="bold">:noah</emphasis>]|<emphasis role="bold">:noah</emphasis>]|<emphasis
role="bold">ipsecnat</emphasis>|<emphasis
role="bold">ipip</emphasis>|<emphasis role="bold">ipip</emphasis>|<emphasis
role="bold">gre</emphasis>|<emphasis role="bold">gre</emphasis>|<emphasis
role="bold">pptpclient</emphasis>|<emphasis role="bold">pptpclient</emphasis>|<emphasis
@ -51,11 +51,25 @@
role="bold">:</emphasis><emphasis>port</emphasis>]}</term> role="bold">:</emphasis><emphasis>port</emphasis>]}</term>
<listitem> <listitem>
<para>If the type is <emphasis role="bold">ipsec</emphasis> or <para>Types are as follows:</para>
<emphasis role="bold">ipsecnat</emphasis>, it may be followed by
<emphasis role="bold">:noah</emphasis> to indicate that the <programlisting> <emphasis role="bold">ipsec</emphasis> - IPv4 IPSEC
Authentication Header protocol (51) is not used by the <emphasis role="bold">ipsecnat</emphasis> - IPv4 IPSEC with NAT-Traversal (UDP port 4500 encapsulation)
tunnel.</para> <emphasis role="bold">ipip</emphasis> - IPv4 encapsulated in IPv4 (Protocol 4)
<emphasis role="bold">gre</emphasis> - Generalized Routing Encapsulation (Protocol 47)
<emphasis role="bold">pptpclient</emphasis> - PPTP Client runs on the firewall
<emphasis role="bold">pptpserver</emphasis> - PPTP Server runs on the firewall
<emphasis role="bold">openvpn</emphasis> - OpenVPN in point-to-point mode
<emphasis role="bold">openvpnclient</emphasis> - OpenVPN client runs on the firewall
<emphasis role="bold">openvpnserver</emphasis> - OpenVPN server runs on the firewall
<emphasis role="bold">generic</emphasis> - Other tunnel type</programlisting>
<para>If the type is <emphasis role="bold">ipsec</emphasis>, it may
be followed by <emphasis role="bold">:noah</emphasis> to indicate
that the Authentication Header protocol (51) is not used by the
tunnel. Given that nat-traversal only support ESP (protocol 50),
<emphasis role="bold">ipsecnat</emphasis> tunnels don't need a
<emphasis role="bold">noah</emphasis> option.</para>
<para>If type is <emphasis role="bold">openvpn</emphasis>, <emphasis <para>If type is <emphasis role="bold">openvpn</emphasis>, <emphasis
role="bold">openvpnclient</emphasis> or <emphasis role="bold">openvpnclient</emphasis> or <emphasis