summaryrefslogtreecommitdiffstats
path: root/retiolum/doc/routing/tun
diff options
context:
space:
mode:
authorEUcancER <root@euer.krebsco.de>2012-01-04 01:02:11 +0100
committerEUcancER <root@euer.krebsco.de>2012-01-04 01:02:11 +0100
commit1b1b253786561e0070b9efae69101f1fee45a752 (patch)
tree5c199f80028b5a32bb94858bb55c6d8e9d60978e /retiolum/doc/routing/tun
parentecf910d71789d3c24dced047ff5326d12b810e45 (diff)
parent0f5edb5dea18c4eb28d1fda4a106b868a23cc614 (diff)
Merge branch 'master' of github.com:krebscode/painload
Diffstat (limited to 'retiolum/doc/routing/tun')
-rw-r--r--retiolum/doc/routing/tun30
1 files changed, 30 insertions, 0 deletions
diff --git a/retiolum/doc/routing/tun b/retiolum/doc/routing/tun
new file mode 100644
index 00000000..a83ffc27
--- /dev/null
+++ b/retiolum/doc/routing/tun
@@ -0,0 +1,30 @@
+tunneling:
+ovpn relevant fixes:
+
+ -up /etc/openvpn/update-resolv-conf
+ -down /etc/openvpn/update-resolv-conf
+ +#up /etc/openvpn/update-resolv-conf
+ +#down /etc/openvpn/update-resolv-conf
+
+ +route-nopull
+ -redirect-gateway $def1
+ -dev tun
+ +dev $(your interfacename here)
+ +dev-type tun
+
+ -auth-user-pass
+ +auth-user-pass $(your openvpn user_pass_file here)
+
+normal firewall stuff:
+ shorewall:
+ in /etc/shorewall/interfaces
+ +loc $(interfacename) detect tcpflags,nosmurfs,routefilter,logmartians
+
+ip+iptables
+ iptables --table nat -A POSTROUTING -o $(your interfacename here) -j MASQUERADE
+ ip route add table $(interfacename) via $(route -n | grep $(interfacename) | grep 0.0.0.0 | awk '{print $1}') dev $(interfacename)
+ ip rule add $(your rule spec here) table $(interfacename)
+
+
+
+