In shorewall you generaly define one ZONE for each interfacace like
this:
/etc/shorewall/interfaces
##
#ZONEINTERFACE BROADCAST OPTIONS
VPN tun0detect dropunclean,blacklist,tcpflags
N
I have OpenVpn instaled on my Debian firewall. I use Shorewall to manage
firewall. I have 3 interfaces eth0, eth1, eth2 in firewall host (Zones:
LAN, DMZ, NET). OpenVPN make 4-th interface tun0 (Zone: VPN).
Than I have set up policies and rules for trafic betwen Zones. It is
easy to set up and and
2 matches
Mail list logo
