airvpn and shorewall router

[wicked_boy74 0]

Hi

Just wondering if anyone has configured the openvpn client on a shorewall router to direct all outbound traffic via airvpn..

example configs would be great ..

Ultimately I would like to be able to route all outbound traffic except for vpn connections to work through airvpn.. and still allow limited incoming traffic to specific ports (e.g. port 80 for my local webserver)

cheers

Allan

[zombie1982 5]

I'm at the same point now. Have a shorewall router and can't route all traffic through tun0 interface, but working on it.

Openvpn is connecting to AirVPN but at the end of log it says that route cant be set.

[zhang888 1065]

What are the actual benefits (for you) of using Shorewall vs. for example, pfSense?

I am asking because such distributions are niche, and you chose ones that is even more niche and has less community support.

Unless somewhere here already configured Shorewall+AirVPN, there are less chances that somebody will install it on a VM to test.

 

If it has GUI options for OpenVPN, you probably have to put the screenshots here. If it can act like normal Linux distro, then you

have to follow the Linux guide, or any OpenVPN Linux configuration manual.

[flat4 79]

What are the actual benefits (for you) of using Shorewall vs. for example, pfSense?

I am asking because such distributions are niche, and you chose ones that is even more niche and has less community support.

Unless somewhere here already configured Shorewall+AirVPN, there are less chances that somebody will install it on a VM to test.

 

If it has GUI options for OpenVPN, you probably have to put the screenshots here. If it can act like normal Linux distro, then you

have to follow the Linux guide, or any OpenVPN Linux configuration manual.

I am also interested on why you guys picked this firewall. pSense user here, when to their website and it was different. 

[zombie1982 5]

I have installed Shorewall at Debian 8 router with DHCPD,SQUID3,VSFTPD,Wlan-APs,NGINX.... and crypt disk drives by veracrypt.

So I would like to redirect a few clients to AirVPN by shorewall. Shorewall uses iptables, so it cant be that difficult...

[zhang888 1065]

Openvpn is connecting to AirVPN but at the end of log it says that route cant be set.

 

You need to attach OpenVPN logs

[zombie1982 5]

Mon Oct 26 21:54:03 2015 OPTIONS IMPORT: timers and/or timeouts modified
Mon Oct 26 21:54:03 2015 OPTIONS IMPORT: LZO parms modified
Mon Oct 26 21:54:03 2015 OPTIONS IMPORT: --ifconfig/up options modified
Mon Oct 26 21:54:03 2015 OPTIONS IMPORT: route options modified
Mon Oct 26 21:54:03 2015 OPTIONS IMPORT: route-related options modified
Mon Oct 26 21:54:03 2015 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Mon Oct 26 21:54:03 2015 ROUTE: default_gateway=UNDEF
Mon Oct 26 21:54:03 2015 TUN/TAP device tun0 opened
Mon Oct 26 21:54:03 2015 TUN/TAP TX queue length set to 100
Mon Oct 26 21:54:03 2015 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Mon Oct 26 21:54:03 2015 /sbin/ifconfig tun0 10.4.10.200 netmask 255.255.0.0 mtu 1500 broadcast 10.4.255.255
Mon Oct 26 21:54:08 2015 NOTE: unable to redirect default gateway -- Cannot read current default gateway from system
Mon Oct 26 21:54:08 2015 Initialization Sequence Completed

 

In Client Area I see that it is connected but can not ping through tun0 interface.

Destination     Gateway         Genmask         Flags Metric Ref    Use Iface

default         *               0.0.0.0         U     0      0        0 ppp0

10.4.0.0        *               255.255.0.0     U     0      0        0 tun0

10.64.64.64     *               255.255.255.255 UH    0      0        0 ppp0

192.168.1.0     *               255.255.255.0   U     0      0        0 br0