[pptp-server] Relay for PPTP server?

Max Enders max.enders at watchguard.com
Wed Jul 21 11:53:30 CDT 1999


Does SOCKS support IP protocols like GRE?

Max Enders
WatchGuard Technologies Inc.
Technical Support Representative
http://www.watchguard.com
max.enders at watchguard.com
206-521-8375


-----Original Message-----
From: Allan Clark [mailto:allanc at sco.com]
Sent: Wednesday, July 21, 1999 9:45 AM
To: Dave DeChellis
Cc: 'tmk'; pptp-server at lists.schulte.org
Subject: Re: [pptp-server] Relay for PPTP server?


Dave DeChellis wrote:

> Basically these are my needs; a simple relay should do the trick.
>
> 1) Basically RFC 1918 assigned PPTP server
> 2) Firewall machine between private/public IP network
> 3) A "relay" machine on the public network.
>
> -IP client connects from ISP to the pseudo-PPTP server, the relay.
> -Relay then forwards traffic to PPTP server to inside the firewall (relay
> knows the private route
>  to get to the real PPTP server
> -PPTP authenticates the client, looking like the client is the relay
> -The relay handles the connectivity to the real clients, yadda yadda yadda

This may sound far-fetched, but what is we rebuilt the pppd so that it
included
support for Socks/Dante (RFC 192[89]), thereby automatically able to connect
through an industry-standard proxy protocol ?  With the tools that socks
includes, I had the impression this is almost as trivial as a set of #define
macros, and a rebuild, something like:
make CFLAGS ='-Dconnect=rconnect -Dlisten=rlisten'

> This way, I can allow all traffic between the PPTP server and the relay.
>
> So, I need a relay machine which can forward GRE (not so easy) and TCP
> (easy)
>
> Thanks,
> Dave
>
> P.S. I thought I remembered seeing a Linux PPTP relay for this sorta thing
> from someone
> at MIT
>
> -----Original Message-----
> From: tmk [mailto:tmk at netmagic.net]
> Sent: Wednesday, July 21, 1999 11:13 AM
> To: Dave DeChellis; pptp-server at lists.schulte.org
> Subject: Re: [pptp-server] Relay for PPTP server?
>
> Try this:
>
> assuming you have the firewall on a separate machine from the pptp server:
>
> allow/forward port 1723 to the pptp server
> allow (or masq if the pptp server has a "fake" IP addr) outgoing
connections
> from the pptp server to anywhere
>
> that should do it
> Kevin
>
> ----- Original Message -----
> From: Dave DeChellis <daved at crl.dec.com>
> To: <pptp-server at lists.schulte.org>
> Sent: Wednesday, July 21, 1999 6:45 AM
> Subject: [pptp-server] Relay for PPTP server?
>
> > Hello,
> >
> > I would like to have external clients connect through our firewall to an
> > internal PPTP server.  I would also like to have a relay
> > of some sort on the external network and just have one trusting rule
> through
> > the firewall to the PPTP server.
> >
> > However, this is tricker since there are multiple protocols to deal with
> as
> > opposed to a true TCP/IP establishment.
> >
> > Is there such an animal which runs under various flavors of UNIX?  I
could
> > deal with a Linux guy.
> >
> > Thanks for any info,
> > Dave DeChellis
> > daved at crl.dec.com
> >
> > _______________________________________________
> > pptp-server maillist  -  pptp-server at lists.schulte.org
> > http://lists.schulte.org/mailman/listinfo/pptp-server
> > List services provided by www.schulte.org!
> >
>
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!




More information about the pptp-server mailing list