Ubuntu Manpage: tunnels - Shorewall VPN definition file
For information about set lists and exclusion, see m[blue]shorewall-exclusionm[][1] (5). Beginning with Shorewall 4.5.16, you can increment one or more nfacct objects each time a packet matches an ipset. You do that by listing the objects separated by commas within parentheses. Example: +myset[src](myobject) iptables rules to allow L2TP/IPSEC VPN behind firewall I need to provide an L2TP/IPSEC VPN for remote support of some new machinery we're getting soon (no choice about that part). As the remote user also needs to be authenticated against Active Directory I need to run the VPN on our Windows (2003) server, rather than directly on the firewall. Shorewall | Firewall Security Company India It has VPN with IPsec, which provides a secure and simple VPN tunnel through which many users can connect from a remote location Moonwall provide a firewall based on FreeBSD and a combination of other software utilities. IPsec — IPsec and firewall rules | pfSense Documentation
Shoreline Firewall (Shorewall) / List shorewall-users Archives
shorewall-snat: Shorewall SNAT/Masquerade definition file
IPsec - Debian Wiki
Jan 03, 2012 Chapter 9. Configuring openswan(ipsec) Add the ipsec interface to /etc/shorewall/interfaces: vpn ipsec+ Note that we added a wildcard ("+") to the tun interface so the vpn zone applies to all tun interfaces - important if you want to support more than one IPSec enabled interface. Shoreline Firewall (Shorewall) Read about the Shorewall 5.0, 5.1 and 5.2 releases here! Get them from the download sites. What is Shorewall? Shorewall is a gateway/firewall configuration tool for GNU/Linux. For a high level description of Shorewall, see the Introduction to Shorewall. To review Shorewall functionality, see the Features Page. Getting Started with Shorewall HowTo/shorewall - Debian Wiki Shorewall uses zones as a way of defining different portions of our network. Our simple example will have three zones: internet, dmz, and local. Shorewall can easily be extended to support many more zones such as a DMZ or a VPN zone. This configuration is performed in /etc/shorewall/zones: