diff options
author | Pedro Martelletto <pedro@cvs.openbsd.org> | 2004-06-02 14:24:03 +0000 |
---|---|---|
committer | Pedro Martelletto <pedro@cvs.openbsd.org> | 2004-06-02 14:24:03 +0000 |
commit | 03059eb507bcbb7954ca7d237037e63b0443d7b5 (patch) | |
tree | d5664503a1fbf9a18088ff86c84572957a36af1e /share/man | |
parent | fedac08c79b2b41bd42aa47525d76b27ca027c4a (diff) |
need to explicitly pass ipencap traffic on the encapsulation interface
from Pedro Almeida <pedro@qui.uc.pt>, ok cedric@, xsa@
Diffstat (limited to 'share/man')
-rw-r--r-- | share/man/man8/vpn.8 | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/share/man/man8/vpn.8 b/share/man/man8/vpn.8 index 07f08edf7f2..9e70cbe52ee 100644 --- a/share/man/man8/vpn.8 +++ b/share/man/man8/vpn.8 @@ -1,4 +1,4 @@ -.\" $OpenBSD: vpn.8,v 1.74 2004/05/27 22:43:08 hshoexer Exp $ +.\" $OpenBSD: vpn.8,v 1.75 2004/06/02 14:24:02 pedro Exp $ .\" .\" Copyright 1998 Niels Provos <provos@physnet.uni-hamburg.de> .\" All rights reserved. @@ -222,6 +222,9 @@ block out log on { enc0, ne0 } all pass in proto esp from $GATEWAY_B to $GATEWAY_A pass out proto esp from $GATEWAY_A to $GATEWAY_B +# Need to allow ipencap traffic on enc0. +pass in on enc0 proto ipencap all + # Passing in traffic from the designated subnets. pass in on enc0 from $NETWORK_B to $NETWORK_A pass out on enc0 from $NETWORK_A to $NETWORK_B |