[pptp-server] Arp Problems? (no data transfer to other hosts on servers subnet)

tmk tmk at netmagic.net
Fri Sep 10 16:04:44 CDT 1999 

OK, then the only masqing you need to do is from the ip-pool assigned to
pptp on the linux box to the ip range 172.27.x.x  you don't need vpn masq.

Kevin

On Fri, 10 Sep 1999, Matt Stockdale wrote:

> My apologies, I will try to clear this up.
> 
> My linux box connects to a Cisco ISDN router at work. That router only
> supplies me 1 IP address. so, to make use of the other machines on my
> home network (the 98 Box, A Laptop, and 2 SparcStations) I run IP
> Masquerading. The IP address supplied (for the ISDN link) is a one of
> the reserved private network addresses, 172.27.x.x. The other machines
> on my network use 192.168.1.x addresses, which do not get routed over
> the ISDN.
> 
> The Cisco ISDN router is in the Core of my work network. We use all
> reserved addresses, with the
> exception of the gateway machines, which run a HTTP caching proxy
> (Squid), Sendmail, and a Socks5
> proxy server. These gateway machines each have 2 ethernet cards, one
> that connects to our core network, and another that connects to our
> Class C on the internet. Our internal routers have no path to the
> internet, but can talk to each of the gateway machines. I installed the
> PPTP server on one of these gateway machines.
> 
> tmk wrote:
> > 
> > This is sort of confusing to me, but here's the impression i get:
> > 
> > you have a windows box on teh same ethernet wire as a linux box, and the
> > linux box has an isdn line that connects to your work network, which in
> > turn connects to the internet somehow.
> > 
> > first off, i don't think you need masqing at all. You might need to add
> > routes to the routing table (linux box)to get your computer to see
> > everything. Be sure to tell your windows machine the default gateway that
> > goes out to the internet.
> > 
> > Just FYI, windows has the nasty habit of sending everything through the
> > vpn link regardless of the routing table you have set up at home, so if
> > you connect to the pptp server with tcp, tcp will only work on that link.
> > 
> > Kevin
> > 
> > On Fri, 10 Sep 1999, Matt Stockdale wrote:
> > 
> > > I downloaded and installed the latest version of poptop on one of my
> > > internet gateway machines. I am trying to connect to it from home.. I
> > > have an interesting situation where I am attempting to use the MS VPN
> > > client to actually get _out_ of a protected network. I have a RH linux
> > > 5.2 box at home that
> > > connects to work via ISDN. I have a Win98 box connected to my home linux
> > > box via ethernet. I have the VPN masq patches in place on the linux box.
> > > I places the PPTP server on a dual homed machine that has access to both
> > > our internal network (reserved addresses 172.27.0.0) and our internet
> > > feed. The VPN client connects fine, and the PPTP server (masq) can ping
> > > it, accept telnets from it, etc, just fine.
> > > the problem is, once I connect the VPN client on my windows box I can't
> > > connect to anything else but masq.
> > >
> > > I have tried having the PPTP server assign both it's own internet
> > > address and a spare internet address, and a 2nd spare internet address
> > > is assigned to the VPN client. logging into our internet router, I
> > > cannot ping the VPN IP, but it does show up w/ the same MAC address as
> > > the PPTP host when I do a "show arp"..
> > >
> > > ip_forwarding and proxy_arp is enabled for _all_ interfaces on the PPTP
> > > host.
> > >
> > > I can't seem to find any errors, other that it just plain not working.
> > >
> > >
> > > +----------+             +----------+
> > > +-----------+             +-------------+
> > > | Win98    |             |RH 5.2    |               |ISDN
> > > Server|             |PPTP Server  |
> > > | VPN clnt |-------------|masq+vpn  |---------------|
> > > |-------------|             |-inet
> > > +----------+             +----------+
> > > +-----------+             +-------------+
> > >
> > > connects to           ISDN working                this is actually            can ping VPN
> > > pptp server                                       the whole internernal       client
> > > fine                                              network
> > >
> > > Any ideas?
> > >
> > > Thanks,
> > > Matt
> > >
> > > _______________________________________________
> > > pptp-server maillist  -  pptp-server at lists.schulte.org
> > > http://lists.schulte.org/mailman/listinfo/pptp-server
> > > List services provided by www.schulte.org!
> > >
>

More information about the pptp-server mailing list