[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Web openvpn.net

Re: [Openvpn-users] iptables and bridge

  • Subject: Re: [Openvpn-users] iptables and bridge
  • From: Erich Titl <erich.titl@xxxxxxxx>
  • Date: Wed, 24 Oct 2007 23:04:50 +0200

Michael D. Berger schrieb:
> I run openvpn on a linux (FC7) box with an
> ethernet bridge.  As specified at
> http://openvpn.net/bridge.html
> I set iptables thus:
>    iptables -A INPUT -i tap0 -j ACCEPT
>    iptables -A INPUT -i br0 -j ACCEPT
>    iptables -A FORWARD -i br0 -j ACCEPT
> Now it works, but this opens up much more
> on the host machine than I want.  But I
> do not understand the paths so that I can
> know how to add additional restriction.

This is rather OT  but
you may look at www.shorewall.net

OpenVPN mailing lists