* PPTP server behind NAT
@ 2003-09-30 1:35 Sven Köhler
0 siblings, 0 replies; only message in thread
From: Sven Köhler @ 2003-09-30 1:35 UTC (permalink / raw)
To: netfilter
Hi,
i'm not using the pptp-conntrack patch yet. So i tried to forward port
1723 and protocol 47 to the target machine. That's is what should work -
but it didn't.
A tcpdump revealed that my Linux box rejected the GRE packets with "icmp
protocol 47 unreachable" packets. What did i do wrong?
I turned of my whole firewall and flushed all tables.
The rules
iptables -t nat -A PREROUTING -p tcp --dp 1723 -j DNAT --to <ip>
iptables -t nat -A PREROUTING -p 47 -j DNAT --to <ip>
simply didn't work.
My Linux box keeps sending the icmp packets.
Does anybody know why it does that?
Thx
Sven
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2003-09-30 1:35 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2003-09-30 1:35 PPTP server behind NAT Sven Köhler
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox