extern/shorewall_code
1
0
Fork 1
mirror of https://gitlab.com/shorewall/code.git synced 2024-11-08 08:44:05 +01:00
Code Issues Packages Projects Releases Wiki Activity

Tweaks to OPENVPN and My Config docs

Browse Source 
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2885 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
This commit is contained in:
teastep 2005-10-15 15:13:35 +00:00
parent a78a536fa5
commit d30370d31c
1 changed files with 11 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
Shorewall-docs2/OPENVPN.xml
View File

@ -352,7 +352,7 @@ openvpn:1194 net 206.162.148.9</programlisting>
openvpnclient:1194 net 206.162.148.9</programlisting>
</blockquote>
<para>We want the remote clien to have access to the local LAN — we do
<para>We want the remote client to have access to the local LAN — we do
that with an entry in <filename>/etc/shorewall/policy</filename>.</para>
<blockquote>
@ -418,7 +418,7 @@ verb 3</programlisting>
<title>Securing a Home Wireless Network with OpenVPN (OpenVPN
Bridge)</title>
<para>This section will discuss how I secured my home wireless network
<para>This section will describe how we secured our home wireless network
using OpenVPN. Our network is as shown in the following diagram.</para>
<graphic fileref="images/network3.png" />
@ -599,7 +599,10 @@ verb 3</programlisting>
<para>In this configuration, we don't need any firewalling between the
laptops and the local LAN so we set BRIDGING=No in shorewall.conf. The
configuration of the bridge then becomes as described in the <ulink
url="SimpleBridge.html">Simple Bridge documentation</ulink>.</para>
url="SimpleBridge.html">Simple Bridge documentation</ulink>. If you need
to control the traffic allowed through the VPN bridge then you will want
to configure Shorewall as shown in the <ulink
url="bridge.html">Bridge/Firewall documentation</ulink>.</para>
<section>
<title>Firewall</title>
@ -632,6 +635,11 @@ openvpnserver:1194 Wifi 192.168.3.0/24
<section>
<title>Tipper</title>
<para>Wireless networks pose a threat to all systems that are
connected to them and we therefore run Firewalls on the two Laptops.
Eastepnc6000 runs <trademark>Sygate</trademark> Security Agent and
Tipper runs a Shorewall-based Netfilter firewall.</para>
<section>
<title>/etc/shorewall/zones</title>