Author: Dan Langille
Date: 02-09-00 22:42
> hardened money-earners
No where do you mean what you are using as a firewall. I'm guessing you are using natd/ipfw becuase you mentioned "oif".
I know what I do with ipnat/ipf (my preferred nat/packet filter). I set the IP address to 0.0.0.0/32. Have you tried that?
Next option: don't use rc.firewall. Write your own rules, using that as a base. And don't refer to an ip address. Just refer to your tun0 interface. e.g.:
ipfw add 100 allow ip from any to any via tun0
ipfw add 50 divert 8668 ip from any to any via tun0