From: "John Paul" <john@pinoylinux.sytes.net>
To: George Vieira <georgev@citadelcomputer.com.au>,
Esteban <esteban@alstec.fr>,
netfilter@lists.netfilter.org
Subject: Re: Nat problem with GRE
Date: Wed, 4 Jun 2003 08:10:57 +0800 [thread overview]
Message-ID: <005901c32a2d$c661d0e0$fd00a8c0@homes> (raw)
In-Reply-To: 09B04A55822EFF4DA48D2E0BB2941D4A0D6D9F@wardrive.citadelcomputer.com.au
George, et al.
I actually have the same problem. I successfully patched my kernel(2.4.20)
with ip_pptp_conntrack (P-O-M) but after recompiling my kernel, iptables
doesnt recognize NAT anymore. How could this happen?
TIA
Pol
----- Original Message -----
From: "George Vieira" <georgev@citadelcomputer.com.au>
To: "Esteban" <esteban@alstec.fr>; <netfilter@lists.netfilter.org>
Sent: Wednesday, June 04, 2003 6:12 AM
Subject: RE: Nat problem with GRE
No offence but for the <insert large number here>th time use pptp helper in
p-o-m.. ;)
GRE is connectionless and also has no ports so connection tracking cannot
map the port used to connect so it doesn't know which user behind the
firewall to relay the packets to.
So you need the patch-o-matic patch and select the PPTP helper to most
likely fix your problem.
Thanks,
____________________________________________
George Vieira
Systems Manager
georgev@citadelcomputer.com.au
Citadel Computer Systems Pty Ltd
http://www.citadelcomputer.com.au
Phone : +61 2 9955 2644
HelpDesk: +61 2 9955 2698
-----Original Message-----
From: Esteban [mailto:esteban@alstec.fr]
Sent: Tuesday, June 03, 2003 9:35 PM
To: netfilter@lists.netfilter.org
Subject: Nat problem with GRE
Hi there,
I have some troubles to NAT GRE traffic.
On my LAN, some users have to connect to an external PPTP server.
The connection success for the first user who connect the PPTP server.
But it fails for the others, when there is already a user connected to
the server.
I looked with tcpdump, and it seem that the GRE traffic of the second
client is droped (TCP 1723 connection is OK)
Actualy, I accept all the traffic destinated to the PPTP server (so tcp
1723 and gre traffic may be accepted).
Does anybody know what I am doing wrong ?
Thank you very much.
--
Esteban
esteban@epita.fr
next prev parent reply other threads:[~2003-06-04 0:10 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
2003-06-03 22:12 Nat problem with GRE George Vieira
2003-06-04 0:10 ` John Paul [this message]
2003-06-04 8:17 ` Filip Sneppe
2003-06-04 10:14 ` Nat problem with GRE (Solved!) John Paul
-- strict thread matches above, loose matches on Subject: below --
2003-06-03 11:35 Nat problem with GRE Esteban
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='005901c32a2d$c661d0e0$fd00a8c0@homes' \
--to=john@pinoylinux.sytes.net \
--cc=esteban@alstec.fr \
--cc=georgev@citadelcomputer.com.au \
--cc=netfilter@lists.netfilter.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox