Correct config info for OpenVPN

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2860 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-12 16:18:39 +00:00 · 2005-10-12 16:18:39 +00:00 · 3ddfb78448
commit 3ddfb78448
parent 5efcf21b43
1 changed files with 6 additions and 15 deletions
--- a/Shorewall-docs2/OPENVPN.xml
+++ b/Shorewall-docs2/OPENVPN.xml
@ -61,16 +61,6 @@
  GPL</ulink>. OpenVPN can be downloaded from <ulink
  url="http://openvpn.net/">http://openvpn.net/</ulink>.</para>

-  <para>OpenVPN support was added to Shorewall in version 1.3.14.</para>
-
-  <warning>
-    <para>The default port number for OpenVPN changed from 5000 to 1194 in
-    Shorewall version 2.2.0 RC2. This change follows OpenVPN 2.0 which also
-    changed its default port to 1194. In the text that follows, where you see
-    Port 1194 this can also refer to port 5000 depending on which version of
-    Shorewall and OpenVPN that you are using.</para>
-  </warning>
-
  <section>
    <title>Preliminary Reading</title>

@ -482,6 +472,8 @@ local 192.168.3.254

 server-bridge 192.168.1.254 255.255.255.0 192.168.1.64 192.168.1.71

+client-to-client
+
 dh dh1024.pem

 ca /etc/certs/cacert.pem
@ -597,8 +589,8 @@ openvpnserver:1194      Wifi    192.168.3.0/24
        <section>
          <title>/etc/shorewall/zones</title>

-          <programlisting>#ZONE   IPSEC   OPTIONS                 IN                      OUT
-#       ONLY                            OPTIONS                 OPTIONS
+          <programlisting>#ZONE   TYPE    OPTIONS                 IN                      OUT
+#                                       OPTIONS                 OPTIONS
 <emphasis role="bold">home    ipv4</emphasis>    #Wired LAN at our home
 net     ipv4
 #LAST LINE - ADD YOUR ENTRIES ABOVE THIS ONE - DO NOT REMOVE
@ -610,8 +602,8 @@ net     ipv4

          <programlisting>#ZONE    INTERFACE      BROADCAST       OPTIONS
 #
-net     eth0            detect          routefilter,dhcp,tcpflags
-<emphasis role="bold">home    tap0            192.168.1.255</emphasis>
+net      eth0           detect          routefilter,dhcp,tcpflags
+<emphasis role="bold">home     tap0           192.168.1.255</emphasis>
 #LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
 </programlisting>
        </section>
@ -641,5 +633,4 @@ all             all             REJECT          info
      </section>
    </section>
  </section>
-
 </article>