[Shorewall-users] tunnels versus rules

Discussion:

Göran Höglund

2016-08-02 09:50:19 UTC

Hi,
I have a very simple question just want to be sure after reading the
manuals.
Instead if defining vpntunnels in the tunnels file can't I use the rules
file instead and add two rules for inbound as well as outbound udp port
1194 traffic and skip the tunnels file?

/GH

------------------------------------------------------------------------------

Matt Darfeuille

2016-08-02 11:46:24 UTC

Permalink

Post by GÃ¶ran HÃ¶glund
Hi,
I have a very simple question just want to be sure after reading the
manuals.
Instead if defining vpntunnels in the tunnels file can't I use the rules
file instead and add two rules for inbound as well as outbound udp port
1194 traffic and skip the tunnels file?
/GH

Göran Höglund

2016-08-02 12:21:09 UTC

Permalink

Post by Matt Darfeuille

Yes you can use the rules file -- see
http://shorewall.org/VPNBasics.html#OpenVPN
"Eliminating the /etc/shorewall/tunnels file
The /etc/shorewall/tunnels file provides no functionality that could not be implemented using entries in /etc/shorewall/rules and I have elimination of
the /etc/shorewall/tunnels file as a long-term goal. The following sections show how entries in /etc/shorewall/tunnels can be replaced by rules for some
common tunnel types."
-Matt
------------------------------------------------------------------------------
_______________________________________________
Shorewall-users mailing list
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Thanks!!