Tweaks to OPENVPN and My Config docs

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2885 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
This commit is contained in:
teastep 2005-10-15 15:13:35 +00:00
parent a78a536fa5
commit d30370d31c

View File

@ -352,7 +352,7 @@ openvpn:1194 net 206.162.148.9</programlisting>
openvpnclient:1194 net 206.162.148.9</programlisting> openvpnclient:1194 net 206.162.148.9</programlisting>
</blockquote> </blockquote>
<para>We want the remote clien to have access to the local LAN — we do <para>We want the remote client to have access to the local LAN — we do
that with an entry in <filename>/etc/shorewall/policy</filename>.</para> that with an entry in <filename>/etc/shorewall/policy</filename>.</para>
<blockquote> <blockquote>
@ -418,7 +418,7 @@ verb 3</programlisting>
<title>Securing a Home Wireless Network with OpenVPN (OpenVPN <title>Securing a Home Wireless Network with OpenVPN (OpenVPN
Bridge)</title> Bridge)</title>
<para>This section will discuss how I secured my home wireless network <para>This section will describe how we secured our home wireless network
using OpenVPN. Our network is as shown in the following diagram.</para> using OpenVPN. Our network is as shown in the following diagram.</para>
<graphic fileref="images/network3.png" /> <graphic fileref="images/network3.png" />
@ -599,7 +599,10 @@ verb 3</programlisting>
<para>In this configuration, we don't need any firewalling between the <para>In this configuration, we don't need any firewalling between the
laptops and the local LAN so we set BRIDGING=No in shorewall.conf. The laptops and the local LAN so we set BRIDGING=No in shorewall.conf. The
configuration of the bridge then becomes as described in the <ulink configuration of the bridge then becomes as described in the <ulink
url="SimpleBridge.html">Simple Bridge documentation</ulink>.</para> url="SimpleBridge.html">Simple Bridge documentation</ulink>. If you need
to control the traffic allowed through the VPN bridge then you will want
to configure Shorewall as shown in the <ulink
url="bridge.html">Bridge/Firewall documentation</ulink>.</para>
<section> <section>
<title>Firewall</title> <title>Firewall</title>
@ -632,6 +635,11 @@ openvpnserver:1194 Wifi 192.168.3.0/24
<section> <section>
<title>Tipper</title> <title>Tipper</title>
<para>Wireless networks pose a threat to all systems that are
connected to them and we therefore run Firewalls on the two Laptops.
Eastepnc6000 runs <trademark>Sygate</trademark> Security Agent and
Tipper runs a Shorewall-based Netfilter firewall.</para>
<section> <section>
<title>/etc/shorewall/zones</title> <title>/etc/shorewall/zones</title>