[pptp-server] Relay for PPTP server?

Dave DeChellis daved at crl.dec.com
Wed Jul 21 10:20:26 CDT 1999 

So the GRE is only used one the inital TCP negotiation is used?

Basically these are my needs; a simple relay should do the trick.


1) Basically RFC 1918 assigned PPTP server
2) Firewall machine between private/public IP network
3) A "relay" machine on the public network.

-IP client connects from ISP to the pseudo-PPTP server, the relay.
-Relay then forwards traffic to PPTP server to inside the firewall (relay
knows the private route
 to get to the real PPTP server
-PPTP authenticates the client, looking like the client is the relay
-The relay handles the connectivity to the real clients, yadda yadda yadda

This way, I can allow all traffic between the PPTP server and the relay.

So, I need a relay machine which can forward GRE (not so easy) and TCP
(easy)

Thanks,
Dave

P.S. I thought I remembered seeing a Linux PPTP relay for this sorta thing
from someone
at MIT



-----Original Message-----
From: tmk [mailto:tmk at netmagic.net]
Sent: Wednesday, July 21, 1999 11:13 AM
To: Dave DeChellis; pptp-server at lists.schulte.org
Subject: Re: [pptp-server] Relay for PPTP server?


Try this:

assuming you have the firewall on a separate machine from the pptp server:

allow/forward port 1723 to the pptp server
allow (or masq if the pptp server has a "fake" IP addr) outgoing connections
from the pptp server to anywhere

that should do it
Kevin

----- Original Message -----
From: Dave DeChellis <daved at crl.dec.com>
To: <pptp-server at lists.schulte.org>
Sent: Wednesday, July 21, 1999 6:45 AM
Subject: [pptp-server] Relay for PPTP server?


> Hello,
>
> I would like to have external clients connect through our firewall to an
> internal PPTP server.  I would also like to have a relay
> of some sort on the external network and just have one trusting rule
through
> the firewall to the PPTP server.
>
> However, this is tricker since there are multiple protocols to deal with
as
> opposed to a true TCP/IP establishment.
>
> Is there such an animal which runs under various flavors of UNIX?  I could
> deal with a Linux guy.
>
> Thanks for any info,
> Dave DeChellis
> daved at crl.dec.com
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
>

More information about the pptp-server mailing list