Random snippets

This page contains random configuration snippets. When adding yours, please leave a brief description, or, better, comment inevident lines.

OpenVPN site-to-site with pre-shared key
vtun6 { local-address 172.21.6.1 local-host 1.2.3.4 local-port 9754 mode site-to-site protocol tcp-passive # Other point must use tcp-active in this case remote-address 172.21.6.2 remote-host 5.6.7.8 remote-port 9754 shared-secret-key-file /etc/keys/somenetwork.key } If you setup subnet routing, like so vyatta@r0# set protocols static route 10.11.0.0/16 next-hop 172.21.6.2 vyatta@r1# set protocols static route 10.12.0.0/16 next-hop 172.21.6.1 Be sure to route the traffic from the machines on the 10.11 and 10.12 networks through the vpn machine otherwise they cannot be reached properly from the other subnet (for instance via default gw).