Difuse/packages
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

ocserv: more explicit documentation

Browse source 
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
This commit is contained in:
Nikos Mavrogiannopoulos 2015-07-08 08:16:30 +02:00
parent 52bf9d5efc
commit c773d4ad91
1 changed files with 19 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

19
net/ocserv/README
View file

@ -1,5 +1,10 @@
The openconnect server expects to be configured using the uci interface. The openconnect server expects to be configured using the uci interface.
It is recommended to setup a dynamic DNS address with openwrt prior
to starting the server. That is because during the first startup
a certificate file which contain the setup dynamic DNS name will be
created.
To setup a server the provides access to LAN with network address To setup a server the provides access to LAN with network address
10.100.2.0/255.255.255.0 using the VPN address range 10.100.2.0/255.255.255.0 using the VPN address range
10.100.3.0/255.255.255.0 add the following to /etc/config/ocserv: 10.100.3.0/255.255.255.0 add the following to /etc/config/ocserv:
@ -65,6 +70,20 @@ config forwarding
config forwarding config forwarding
option dest 'vpn' option dest 'vpn'
option src 'lan' option src 'lan'
config rule
option target 'ACCEPT'
option src 'wan'
option proto 'tcp'
option dest_port '443'
option name 'vpn'
config rule
option target 'ACCEPT'
option src 'wan'
option proto 'udp'
option dest_port '443'
option name 'vpn'
----------------------------------------------------------------- -----------------------------------------------------------------