Add a short section about bridged OpenVPN configurations.

Signed-off-by: Tom Eastep <teastep@shorewall.net>
2024-11-08 00:34:04 +01:00 · 2010-03-25 15:30:46 -07:00 · 2010-03-25 15:30:46 -07:00 · ad08d2195e
commit ad08d2195e
parent 5a36606167
1 changed files with 33 additions and 0 deletions
--- a/docs/OPENVPN.xml
+++ b/docs/OPENVPN.xml
@ -431,6 +431,39 @@ verb 3</programlisting>
    </orderedlist>
  </section>

+  <section>
+    <title>Bridged Roadwarrior</title>
+
+    <para>If you want to use a bridged OpenVPN configuration rather than a
+    routed configuration, then follow any of the available HOWTOs to set up
+    the bridged configuration. Then:</para>
+
+    <orderedlist>
+      <listitem>
+        <para>In your current Shorewall two-interface configuration, replace
+        references to your internal interface with the name of the bridge;
+        and</para>
+      </listitem>
+
+      <listitem>
+        <para>Set the <emphasis role="bold">routeback</emphasis> option in the
+        bridge's entry in <ulink
+        url="manpages/shorewall-interfaces.html">/etc/shorewall/interfaces</ulink>;
+        end</para>
+      </listitem>
+
+      <listitem>
+        <para>Add this entry to <ulink
+        url="manpages/shorewall-tunnels.html">/etc/shorewall/tunnels</ulink>:</para>
+
+        <programlisting>#TYPE               ZONE           GATEWAY        GATEWAY ZONE
+openvpnserver:1194  net            0.0.0.0/0</programlisting>
+      </listitem>
+    </orderedlist>
+
+    <para>This will make the roadwarrior part of your local zone.</para>
+  </section>
+
  <section>
    <title>Bridging Two Networks</title>