diff options
Diffstat (limited to 'manifests/subsystems')
| -rw-r--r-- | manifests/subsystems/firewall/openvpn.pp | 13 |
1 files changed, 10 insertions, 3 deletions
diff --git a/manifests/subsystems/firewall/openvpn.pp b/manifests/subsystems/firewall/openvpn.pp index 51b31fe..f5e8c94 100644 --- a/manifests/subsystems/firewall/openvpn.pp +++ b/manifests/subsystems/firewall/openvpn.pp @@ -12,18 +12,25 @@ class firewall::openvpn { sourcezone => 'loc', destinationzone => 'vpn', policy => 'ACCEPT', - order => '1', + order => '20', } shorewall::policy { 'vpn-loc': sourcezone => 'vpn', destinationzone => 'loc', policy => 'ACCEPT', - order => '1', + order => '21', + } + + shorewall::policy { 'fw-vpn': + sourcezone => '$FW', + destinationzone => 'vpn', + policy => 'ACCEPT', + order => '22', } shorewall::tunnel { 'openvpn': - tunnel_type => 'openvpn', + tunnel_type => 'openvpnclient', zone => 'net', } } |