Re: [Shorewall-users] redirecting ALL ipv6 local/lan traffic over a wireguard VPN to/through remote's external interface. almost there ... routing issue?

[PGNet Dev]

On 6/1/20 4:51 PM, Tom Eastep wrote:
>> @ local

> You are missing a default route: via fd10:254:254::1 dev wg0

>> @ remote

> That route is incorrect -- it should be via fd10:254:254::1 dev wg0.

Thanks!  Obviously non-obvious to me :-/

Such routes can be set/handled by

        system networking (systemd-networkd stack, in my case)
        wireguard scripts
        shorewall itself


is there any rationale for choosing one over the other?

if shorewall's a realistic option, where best to set the routes?


_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users