From: "Buddy wu" <ejournal4me@gmail.com>
To: Rob Sterenborg <rob@sterenborg.info>
Cc: netfilter@lists.netfilter.org
Subject: Re: how to connect to VPN server using IPTABLES nat
Date: Fri, 3 Mar 2006 12:55:02 +0800 [thread overview]
Message-ID: <43a0cdcb0603022055x4209bf80v@mail.gmail.com> (raw)
In-Reply-To: <63794.193.173.147.3.1141299908.squirrel@webmail.sterenborg.info>
I'm puzzled with the IPTABLES
when I set the default Policy of INPUT and FORWARD chains, I can
established the vpn connection. But When I use the below command ,the
vpn connection can't be established
iptables -A INPUT -d 218.0.0.0 -j ACCEPT
iptables -A FORWARD -d 218.0.0.0 -j ACCEPT
WHY? what other rules should be added?
2006/3/2, Rob Sterenborg <rob@sterenborg.info>:
>
> On Thu, March 2, 2006 11:46, Buddy wu wrote:
> > I DON'T mean there is a VPN serving making from linux.
> > The fact is that:
> > I set up a VPN server using windows server(IP:192.168.1.1) and it
> > is behind a Linux server which is using iptables for nat
> > iptables -A PREROUTING -d 218.0.0.0 -j DNAT --to 192.168.1.1
> >
> > but I can't establish the VPN connection from out(etc IP address is
> > 218.10.0.1, I have tested that I can connect to other service such as
> > web(port 80). How can I establish the VPN connection ? Is there need
> > some setting in IPTABLES?
>
> If it's Windows then I suspect it's a PPTP server.
> For this to work you have to forward both 1723/tcp and the gre (47) protocol.
> Also, you need the pptp conntrack/nat modules for which you may have to
> recompile the kernel and iptables.
>
>
> Gr,
> Rob
>
>
>
>
next prev parent reply other threads:[~2006-03-03 4:55 UTC|newest]
Thread overview: 4+ messages / expand[flat|nested] mbox.gz Atom feed top
2006-03-02 10:46 how to connect to VPN server using IPTABLES nat Buddy wu
2006-03-02 11:45 ` Rob Sterenborg
2006-03-03 4:55 ` Buddy wu [this message]
2006-03-03 6:22 ` Rob Sterenborg
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=43a0cdcb0603022055x4209bf80v@mail.gmail.com \
--to=ejournal4me@gmail.com \
--cc=netfilter@lists.netfilter.org \
--cc=rob@sterenborg.info \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.