Hi Felix,<br><br><div class="gmail_quote">Am 8. Januar 2013 21:24 schrieb Felix Ehritz <span dir="ltr"><<a href="mailto:felix.ehritz.funkfeuer@gmail.com" target="_blank">felix.ehritz.funkfeuer@gmail.com</a>></span>:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
  
    
  
  <div bgcolor="#FFFFFF" text="#000000">
    <div>Am 08.01.2013 20:29, schrieb Erich N.
      Pekarek:<br>
      <br>
      hab jetzt nochmal neu geflasht und sämtliches über die konsole
      gemacht<br>
      genau gesagt diese config genommen:<br>
      <br>
      config openvpn
      'to_krypta'                                                                                                                     




      <br>
              option remote
      '78.41.115.228'                                                                                                          




      <br>
              option keepalive '10
      30'                                                                                                               



      <br>
              option dev_type
      'tap'                                                                                                                  




      <br>
              option enable
      '1'                                                                                                                      




      <br>
              option verb
      '3'                                                                                                                        




      <br>
              option dev
      'tap0'                                                                                                                      




      <br>
              option fast_io
      '1'                                                                                                                     




      <br>
              option port '<b>50XX</b>'                                                                                                                     



      <br>
              option ifconfig '<b>IP-Adresse aus Frontend</b>
      255.255.255.0'                                                                                           



      <br>
              option enabled
      '1'                                                                                                                     




      <br>
              option nobind
      '1'                                                                                                                      




      <br>
              option comp_lzo
      '1'                                                                                                                    




      <br>
      <i>        option tun_ipv6
'1'                                                                                                     </i>               



      <br>
              option ifconfig_noexec
      '1'                                                                                                             



      <br>
              option ifconfig_nowarn
      '1'                                                                                                             



      <br>
              option persist_tun
      '1'                                                                                                                 



      <br>
              option persist_local_ip
      '1'                                                                                                            



      <br>
              option persist_remote_ip
      '1'                                                                                                           



      <br>
              option remote_random
      '0'                                                                                                               



      <br>
              option proto
      'udp'                                                                                                                     




      <br>
              option up_delay
      '5'                                                                                                                    




      <br>
              option float '1'    , <br>
      <br>
      und siehe da..... es funkt!<br></div></div></blockquote><div>Ja, die Config hab ich auf Empfehlunk von Markit vor langer zeit mal gemacht und deploye sie mit dem basis Image.</div><div>Ich dachte eigentlich du hattest die in Verwendung :-) </div>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div bgcolor="#FFFFFF" text="#000000"><div>
      <br>
      könnte mir noch bitte wer kurz die firewallregeln erklären?<br>
      hab<br>
      wan(ins eigene 10.0.0.x netz) <br>
      lan (=0xFF-Netz für weitere router)=olsr<br>
      tunnel (tap0 interface)=olsr<br></div></div></blockquote><div>Hmm. Versteh die frage nicht ganz. </div><div>WAN ist das Interface (und auch die Zone) an der dein ISP steckt.</div><div>LAN ist das Interface an dem deine PCs stecken. Die Originale Zone dafür hab ich "Privat" genannt.</div>
<div>tap0 ist das Interface der VPN-App. und braucht OLSR. (bitte "ether" anstelle von "mesh" verwenden, verringert den OLSR-Traffic)</div><div><br></div><div>Wen du am LAN-Interface andere 0xFF-Router anstecken willst, dann bitte dieses Interface in de 0xFF-Zone stecken und ebenfalls OLSR aktivieren. (Auch da "ether" verwenden)</div>
<div><br></div><div>LG Joe</div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div bgcolor="#FFFFFF" text="#000000"><div>
      <br>
      <br></div></div></blockquote></div>