OpenVPN tunnel USG ⇒ julie.mixi.cz

Configuration

julie.mixi.cz

Setup OpenVPN as a server.

OpenVPN

TODO

shorewall

/etc/shorewall/interfaces:

#ZONE   INTERFACE      BROADCAST   OPTIONS
vpn     tun0           detect      routeback

/etc/shorewall/zones:

#ZONE   TYPE OPTIONS 
vpn     ipv4

/etc/shorewall/policy: TODO - upravit podle reálné funkční konfigurace

#SOURCE   DEST    POLICY   LOG   LIMIT
vpn       all     ACCEPT
all       vpn     ACCEPT
vpn       net     ACCEPT
net       vpn     ACCEPT

/etc/shorewall/rules: TODO - upravit podle reálné funkční konfigurace

#ACTION     SOURCE     DEST     PROTO     DEST PORT(S)
ACCEPT      net        vpn      udp       1194
ACCEPT      vpn        loc
ACCEPT      loc        vpn
ACCEPT      vpn        net

other

Ensure that IP forwarding is enabled to route traffic between interfaces. /etc/sysctl.conf:

net.ipv4.ip_forward=1

Apply the change:

sudo sysctl -p

Unifi Security Gateway

TODO