Incorporate firewall rules

rogierslag / rogierslag-openswan

Puppet module: Installs and configures an OpenSwan VPN server for use for iOS and OSX devices

MIT License

0 stars 2 forks source link

Closed rogierslag closed 10 years ago

rogierslag commented 10 years ago

Now they are not added, but that should be easy

-A FORWARD -d 10.111.111.0/24 -i ppp0 -j DROP
-A FORWARD -s 10.111.111.0/24 -i ppp0 -j ACCEPT
-A FORWARD -d 10.111.111.0/24 -i eth0 -j ACCEPT

and

-A POSTROUTING -o eth0 -j MASQUERADE

rogierslag commented 10 years ago

also keep track of the number of entries. Every user entry may create an additional pppX interface