Fiaf and OpenVpn
Nikolay A. Fetisov
email hidden
Wed Feb 13 05:33:25 CET 2008
On Tue, 12 Feb 2008 17:32:13 -0200
Bernardo Pita wrote:
> Hi, I need to know if Fiaif work in a OpenVPN scenario !.
Fiaif works fine with OpenVPN tun interfaces.
> ...
> zone.vpn
> NAME=VPN
> ...
> BCAST=10.10.10.255
>
This zone definition is incomplete. You need at least one
record in INPUT, OUTPUT and FORWARD chains. For example,
NAME=VPN
DEV=tun0
DYNAMIC=1
GLOBAL=0
IP_EXTRA=""
NET_EXTRA=""
DHCP_SERVER=0
INPUT[0]="ACCEPT ALL 0.0.0.0/0=>0.0.0.0/0"
OUTPUT[0]="ACCEPT ALL 0.0.0.0/0=>0.0.0.0/0"
FORWARD[0]="ALL DROP ALL 0.0.0.0/0=>0.0.0.0/0"
TC_ENABLE=0
TC_DOWNLINK=410
TC_UPLINK=434
--
Best regards,
Nikolay Fetisov
More information about the fiaif
mailing list