[Shorewall-users] unable to filter or log vpn traffic

Tom Eastep teastep at shorewall.net
Mon Mar 14 19:18:38 PST 2005


Paolo wrote:
> hi all,
> 
> i have a classic net topology with two local zone, a firewall/router
> with dsl connection
> 
> loc1 (192.168.11.0/24)
>                        ----- fw ----- net
> loc2 (192.168.12.0/24)
> 
> now on the local zone 1 (on a WinXP machine) i have installed
> OpenVPN 2.x to make a test connection with a company.
> OpenVPN is configured as client to use tun on udp
> port 10000 with ip 10.0.0.2, on the other side (the server
> located on company) the ip is 10.0.0.1, the connection
> work very well.
> 
> The problem is that i'm not able to filter or anyway log, traffic
> passing through VPN

Stop and THINK -- if you could do that on your router, ANY ROUTER
BETWEEN ANY TWO VPN ENDPOINTS COULD DO THE SAME THING!

Maybe that is your definition of "private" -- it's not mine!

-Tom
--
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep at shorewall.net
PGP Public Key   \ https://lists.shorewall.net/teastep.pgp.key


More information about the Shorewall-users mailing list