diff --git a/docs/OPENVPN.xml b/docs/OPENVPN.xml index bf7c667dc..31c9ed204 100644 --- a/docs/OPENVPN.xml +++ b/docs/OPENVPN.xml @@ -68,8 +68,8 @@ - It is widely supported -- I run it on both Linux and Windows - XP. + It is widely supported -- I run it on both Linux and + Windows. @@ -97,7 +97,7 @@ Suppose that we have the following situation: - + We want systems in the 192.168.1.0/24 subnetwork to be able to communicate with the systems in the 10.0.0.0/8 network. This is @@ -118,8 +118,7 @@ /etc/shorewall/zones — Systems A & B - #ZONE TYPE OPTIONS IN OUT -# OPTIONS OPTIONS + #ZONE TYPE OPTIONS IN_OPTIONS OUT_OPTIONS vpn ipv4 @@ -130,7 +129,7 @@ vpn ipv4 In /etc/shorewall/interfaces on system A: - #ZONE INTERFACE BROADCAST OPTIONS + #ZONE INTERFACE OPTIONS vpn tun0 @@ -249,7 +248,7 @@ vpn loc ACCEPT OpenVPN 2.0 provides excellent support for roadwarriors. Consider the setup in the following diagram: - + On the gateway system (System A), we need a zone to represent the remote clients — we'll call that zone road. @@ -257,8 +256,7 @@ vpn loc ACCEPT
/etc/shorewall/zones — System A: - #ZONE TYPE OPTIONS IN OUT -# OPTIONS OPTIONS + #ZONE TYPE OPTIONS IN_OPTIONS OUT_OPTIONS road ipv4
@@ -269,7 +267,7 @@ road ipv4 In /etc/shorewall/interfaces on system A: - #ZONE INTERFACE BROADCAST OPTIONS + #ZONE INTERFACE OPTIONS road tun+ @@ -443,7 +441,7 @@ verb 3 192.168.1.0/24, there will be times when your roadwarriors need to access your lan from a remote location that uses that same network. - + This may be accomplished by configuring a second server on your firewall that uses a different port and by using Consider the following case: - + Part of the 192.168.1.0/24 network is in one location and part in another. The two LANs can be bridged with OpenVPN as described in this