|
|
@@ -32,13 +32,9 @@ openvpn:
|
|
|
topology subnet
|
|
|
mssfix
|
|
|
server 10.9.0.0 255.255.0.0
|
|
|
- push "route 5.200.59.165 255.255.255.255"
|
|
|
- push "route 192.168.200.0 255.255.248.0"
|
|
|
push "route 192.168.205.0 255.255.255.0"
|
|
|
push "route 10.1.116.0 255.255.255.0"
|
|
|
push "route 217.74.42.72 255.255.255.255"
|
|
|
- route 192.168.206.0 255.255.255.0
|
|
|
- route 192.168.201.0 255.255.255.0
|
|
|
route 192.168.21.0 255.255.255.0
|
|
|
route 10.10.0.0 255.255.0.0
|
|
|
crl-verify /etc/openvpn/keys/crl.pem
|
|
|
@@ -106,7 +102,6 @@ openvpn:
|
|
|
initscript: |-
|
|
|
|
|
|
iptables -I FORWARD 1 -m state --state NEW -s 10.9.10.0/24 -i external -j DROP
|
|
|
- iptables -I FORWARD 1 -m state --state NEW -s 10.9.10.0/24 -d 5.200.59.165 -i external -j ACCEPT
|
|
|
iptables -I FORWARD 1 -m state --state NEW -s 10.9.10.0/24 -d 192.168.205.10 -i external -j ACCEPT
|
|
|
iptables -I INPUT 1 -m state --state NEW -s 10.9.10.0/24 -i external -j DROP
|
|
|
iptables -I INPUT 1 -m state --state NEW -s 10.9.10.0/24 -d 217.74.42.72 -i external -j ACCEPT
|
|
|
@@ -123,7 +118,6 @@ openvpn:
|
|
|
stopscript: |-
|
|
|
|
|
|
iptables -D FORWARD -m state --state NEW -s 10.9.10.0/24 -i external -j DROP
|
|
|
- iptables -D FORWARD -m state --state NEW -s 10.9.10.0/24 -d 5.200.59.165 -i external -j ACCEPT
|
|
|
iptables -D FORWARD -m state --state NEW -s 10.9.10.0/24 -d 192.168.205.10 -i external -j ACCEPT
|
|
|
iptables -D INPUT -m state --state NEW -s 10.9.10.0/24 -i external -j DROP
|
|
|
iptables -D INPUT -m state --state NEW -s 10.9.10.0/24 -d 217.74.42.72 -i external -j ACCEPT
|
