[pptp-server] Clueless

Benjamin Smith bens at saber.net
Sat Oct 23 00:32:21 CDT 1999 

Just when I think I'm comfortable at the command prompt, I get lost again!

Here's my situation. Need PPTP to access a computer on a work computer
from a remote network, through a masqueraded Internet connection. Both networks
have a single, masqueraded Internet connection. 

Here's a diagram 

Remote Network 

Windoze  +
	   |
Linux       +
	   |
Linux       +=== Internet 
========================================== 
Office Network 

Linux        +===Internet    # This computer has PPTP installed. 
                |
Windoze    +
                |
Windoze    +
                |
Windoze    +
...
=========================================== 

I want to initiate a connection from the remote network to the office network.

The remote computers are connected via IP Masquerading, and use local addresses
192.168.120.* The work computers are similarly connected, and use local
addresses 192.168.121.*. 

The addresses for the Internet on both ends are static. As noted above, PPTP
has been installed on the Linux server for the office, apparently successfully. 

But how do I get the remote Windoze to connect? I've tried d/l MSDUN13.exe,
(supposed to have VPN support) but it only seems to work if you are hooked up
to the 'net via MODEM. What about via a LAN? 

Or should I be using a Linux PPTP client? Would I be able to route the whole
remote network to the office network with a Linux PPTP client on the server of
the three machines? 

I've certainly heard of IPSec, and the only thing I've found is FreesWAN, which
apparently only works with RH 5.2 and 2.0.3x kernel, I'm using RH 6.0 and 2.2.
for office and remote networks. And, if I'm lost now, I don't even know where
to begin with IPsec... 

I'll also include the rules for ipchains that I have in /etc/rc.local: 

ipchains -P forward DENY
ipchains -A forward -s 192.168.120.1/32 -j MASQ #The server (RH 6.0)
ipchains -A forward -s 192.168.120.5/32 -j MASQ # Win/ to connect with
ipchains -A forward -s 192.168.120.10/32 -j MASQ

The office reads as follows: 

ipchains -P forward DENY
ipchains -A forward -s 192.168.121.1/32 -j MASQ # The server (RH 6.0) 
ipchains -A forward -s 192.168.121.2/32 -j MASQ
ipchains -A forward -s 192.168.121.3/32 -j MASQ
ipchains -A forward -s 192.168.121.4/32 -j MASQ # Win/ To connect to. 
ipchains -A forward -s 192.168.121.50/32 -j MASQ
ipchains -A forward -s 192.168.121.51/32 -j MASQ
ipchains -A forward -s 192.168.121.100/32 -j MASQ
ipchains -A forward -s 192.168.121.10/32 -j MASQ   

Thanks in advance, 

--
                    ("`-''-/").___..--''"`-._    (Simba)
                    `@_ @  )    `-.  (        ).`-.__.`)
                    (_Y_.)'  ._    )  `._ `. ``-..-'
                _..`--'_..-_/  /--'_.' ,'
              ((().-''  ((().'  (((.-'        Benjamin Smith

More information about the pptp-server mailing list