From: michel@mitch-it.com (Michel van der Klei)
To: Peter Marshall <peter.marshall@caris.com>
Cc: Alexandros Papadopoulos <apapadop@alumni.carnegiemellon.edu>,
netfilter@lists.netfilter.org
Subject: Re: VPN over netfilter NAT
Date: Fri, 12 Nov 2004 14:54:42 +0100 [thread overview]
Message-ID: <20041112135442.GA31720@debian> (raw)
In-Reply-To: <025601c4c8b8$e81b2fd0$49caa8c0@caris.priv>
[-- Attachment #1: Type: text/plain, Size: 1334 bytes --]
On Fri, Nov 12, 2004 at 09:09:55AM -0400, Peter Marshall wrote:
> What most of the docs are refering to with "No NAT" is that for most vpn
> servers, you can not have the VPN server on an internal IP address .... it
> has to have a public address.
>
I don't know if you've looked at pptpproxy. I use it very often and it works
great for me.
You can find more info aon this site:
http://www.mgix.com/pptpproxy/
Greetz,
Michel
>
> ----- Original Message -----
> From: "Alexandros Papadopoulos" <apapadop@alumni.carnegiemellon.edu>
> To: <netfilter@lists.netfilter.org>
> Sent: Thursday, September 16, 2004 7:36 AM
> Subject: VPN over netfilter NAT
>
>
> I stumbled across
> http://www.linuxhomenetworking.com/linux-adv/vpn-linux.htm today, which
> states that "NAT breaks VPNs".
>
> Is this just an over-simplifying statement that really means "if you're
> reading this, then don't even try setting up a NAT-traversing VPN"?
>
> This is exactly what I'm planning to do; I've got my mind set on having
> the two VPN endpoints inside two NATed networks, both managed by
> respective dedicated linux boxes running only netfilter.
>
> If that is indeed possible (and doable for a first timer), could anyone
> provide some relevant pointers to documentation?
>
> Cheers
>
> -A
>
[-- Attachment #2: Digital signature --]
[-- Type: application/pgp-signature, Size: 189 bytes --]
prev parent reply other threads:[~2004-11-12 13:54 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2004-09-16 11:36 VPN over netfilter NAT Alexandros Papadopoulos
2004-09-16 11:47 ` Brent Clark
2004-09-16 11:49 ` John A. Sullivan III
2004-09-16 12:00 ` OFFTOPIC: " Leonardo Rodrigues Magalhães
2004-09-16 12:30 ` Jason Opperisano
2004-09-16 14:36 ` Aleksandar Milivojevic
2004-09-16 17:11 ` Les Mikesell
2004-09-17 1:36 ` Kenneth Porter
2004-11-12 13:09 ` Peter Marshall
2004-11-12 13:54 ` Michel van der Klei [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20041112135442.GA31720@debian \
--to=michel@mitch-it.com \
--cc=apapadop@alumni.carnegiemellon.edu \
--cc=netfilter@lists.netfilter.org \
--cc=peter.marshall@caris.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox