From 9f9d9fd8d1e12d8c9e3cf3638867e528546113b3 Mon Sep 17 00:00:00 2001 From: Tom Eastep Date: Mon, 2 Jun 2014 07:35:02 -0700 Subject: [PATCH] Eradicate usage of an interface name in the SOURCE column of the masq file Signed-off-by: Tom Eastep --- docs/IPSEC.xml | 8 ++++---- docs/XenMyWay-Routed.xml | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/docs/IPSEC.xml b/docs/IPSEC.xml index c50c0f792..d361f9cd2 100644 --- a/docs/IPSEC.xml +++ b/docs/IPSEC.xml @@ -200,12 +200,12 @@ vpn eth0:192.168.1.0/24 /etc/shorewall/masq - System A - #INTERFACE SUBNET ADDRESS + #INTERFACE SOURCE ADDRESS eth0:!10.0.0.0/8 192.168.1.0/24 /etc/shorewall/masq - System B - #INTERFACE SUBNET ADDRESS + #INTERFACE SOURCE ADDRESS eth0:!192.168.1.0/24 10.0.0.0/8 @@ -425,8 +425,8 @@ ipsec net 0.0.0.0/0 vpn1,vpn2,vpn3 Shorewall will issue warnings to that effect. These warnings may be safely ignored. FreeS/Wan may now be configured to have three different Road Warrior connections with the choice of connection being based on X-509 - certificates or some other means. Each of these connections will utilize - a different updown script that adds the remote station to the appropriate + certificates or some other means. Each of these connections will utilize a + different updown script that adds the remote station to the appropriate zone when the connection comes up and that deletes the remote station when the connection comes down. For example, when 134.28.54.2 connects for the vpn2 zone the up part of the script will issue the diff --git a/docs/XenMyWay-Routed.xml b/docs/XenMyWay-Routed.xml index 346745ec9..ea64d5926 100644 --- a/docs/XenMyWay-Routed.xml +++ b/docs/XenMyWay-Routed.xml @@ -624,7 +624,7 @@ $EXT_IF:192.168.99.1 192.168.98.1 192.168.1.98 COMMENT Masquerade Local Network -$EXT_IF $INT_IF 206.124.146.179 +$EXT_IF 192.168.1.0/24 206.124.146.179 #LAST LINE -- ADD YOUR ENTRIES ABOVE THIS LINE -- DO NOT REMOVE /etc/shorewall/proxyarp: