On 03/01/2016 07:04 AM, Nigel Quinn wrote: > Hi Tom, > > I've tried the 'shorewall enable tun10' command and it populates the route > for tun10 into the 'main' routing table, but not into the individual > providers routing tables 'P_VSAT' and 'P_FB', so shorewall still returns the > sfilter messages for return traffic on eth0 when I try to pass traffic from a > client on tun10. >
Hi Nigel, Are you setting USE_DEFAULT_RT=No? If you switch to USE_DEFAULT_RT=Yes, then you won't need to populate the other routing tables. USE_DEFAULT_RT was created specifically to get around the problem of VPNs coming and going. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Site24x7 APM Insight: Get Deep Visibility into Application Performance APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month Monitor end-to-end web transactions and take corrective actions now Troubleshoot faster and improve end-user experience. Signup Now! http://pubads.g.doubleclick.net/gampad/clk?id=272487151&iu=/4140
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
