Merge branch 'master' of github.com:krebscode/painload

2 files changed, 35 insertions, 0 deletions

diff --git a/retiolum/doc/routing/ip-ranges b/retiolum/doc/routing/ip-ranges
new file mode 100644
index 00000000..06f23e4e
--- /dev/null
+++ b/retiolum/doc/routing/ip-ranges
@@ -0,0 +1,5 @@
+youtube
+    209.85.0.0/16
+    208.65.0.0/16
+
+
diff --git a/retiolum/doc/routing/tun b/retiolum/doc/routing/tun
new file mode 100644
index 00000000..a83ffc27
--- /dev/null
+++ b/retiolum/doc/routing/tun
@@ -0,0 +1,30 @@
+tunneling:
+ovpn relevant fixes:
+
+    -up /etc/openvpn/update-resolv-conf
+    -down /etc/openvpn/update-resolv-conf
+    +#up /etc/openvpn/update-resolv-conf
+    +#down /etc/openvpn/update-resolv-conf
+
+    +route-nopull
+    -redirect-gateway $def1
+    -dev tun
+    +dev $(your interfacename here)
+    +dev-type tun
+
+    -auth-user-pass
+    +auth-user-pass $(your openvpn user_pass_file here)
+
+normal firewall stuff:
+    shorewall:
+    in /etc/shorewall/interfaces
+    +loc     $(interfacename)           detect          tcpflags,nosmurfs,routefilter,logmartians
+
+ip+iptables
+    iptables --table nat -A POSTROUTING -o $(your interfacename here) -j MASQUERADE
+    ip route add table $(interfacename) via $(route -n | grep $(interfacename) | grep 0.0.0.0 | awk '{print $1}') dev $(interfacename)
+    ip rule add $(your rule spec here) table $(interfacename)
+
+
+
+