From mboxrd@z Thu Jan 1 00:00:00 1970 From: "Venkatesh. K" Subject: Re: Connecting to PPtP Servers from a LAN Date: Mon, 22 Sep 2003 13:26:47 +0530 Sender: netfilter-admin@lists.netfilter.org Message-ID: <012401c380df$2a7ddda0$2800a8c0@karu> References: <200309211252.h8LCq5K25534@circle.mikroplan.com> Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_011C_01C3810D.2C90C930" Return-path: Errors-To: netfilter-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Id: List-Unsubscribe: , List-Archive: To: netfilter@lists.netfilter.org Cc: Alexander Wied This is a multi-part message in MIME format. ------=_NextPart_000_011C_01C3810D.2C90C930 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable You have not given full details. You need to check=20 1. You need to allow GRE protocol through your firewall 2. Assuming you are using NAT, you need to compile support for pptp = connection tracking in kernel. Please note that conntrack_pptp is not = part of stock kernel. Have a look at www.netfilter.org. Else, only one = remote PPTP session works. Venkatesh. K ----- Original Message -----=20 From: Alexander Wied=20 To: netfilter@lists.netfilter.org=20 Sent: Sunday, September 21, 2003 6:31 PM Subject: Connecting to PPtP Servers from a LAN Hello everybody, =20 we have set up a simple firewall configuration: =20 ournetwork ----------------- Router with iptables = ----------------Internet =20 the router with iptables does Masquerading on outgoing Packets from = the LAN. =20 When connecting to an PPtP Server in the Internet, connection does not = work. =20 When trying it with the old router, an Windows Winroute Router, the = connection works fine without configuring anything. What rules do I have to configure for my Clients, so that they may = access an PPtP-Server localted in the Internet? =20 =20 Thanks in advance, =20 Alex ------=_NextPart_000_011C_01C3810D.2C90C930 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
You have not given full details.
 
You need to check
 
1. You need to allow GRE protocol through your=20 firewall
2. Assuming you are using NAT, you need to compile = support for=20 pptp connection tracking in kernel. Please note that conntrack_pptp is = not part=20 of stock kernel. Have a look at www.netfilter.org. Else, only one = remote=20 PPTP session works.
 
Venkatesh. K
----- Original Message -----
From:=20 Alexander = Wied=20
To: netfilter@lists.netfilter.o= rg=20
Sent: Sunday, September 21, = 2003 6:31=20 PM
Subject: Connecting to PPtP = Servers from=20 a LAN

Hello=20 everybody,

 

we have set up a simple = firewall=20 configuration:

 

ournetwork  =20 -----------------   Router with iptables=20 ----------------Internet

 

the router with iptables = does=20 Masquerading on outgoing Packets from the = LAN.

 

When connecting to an = PPtP Server=20 in the Internet, connection does not = work.

 

When trying = it with the=20 old router, an Windows Winroute Router, the connection works fine = without=20 configuring anything.

What  rules do I = have to=20 configure for my Clients, so that they may access an PPtP-Server = localted in=20 the Internet?

 

 

Thanks in=20 advance,

 

Alex

= ------=_NextPart_000_011C_01C3810D.2C90C930--