[pptp-server] GRE through ipchains masquerade
Tom Eastep
teastep at evergo.net
Thu Apr 20 21:23:11 CDT 2000
On Thu, 20 Apr 2000, Brian Haney wrote:
> I'm sure this must be a frequently-asked-question, but I could not
> find the answer in the HOWTOs.
>
> I am running RedHat Linux 6.0 as a gateway between my home LAN and a
> PoPToP server at work. I made sure the router at work would permit
> all IP traffic through to the PoPToP server (a RedHat 6.1 box). My
> Windows NT 4.0 RAS client is on a private (192.168.1.0) network behind
> the RedHat 6.0 gateway.
>
> ( )
> NT client ----- RH6.0 Gateway ----- ( INTERNET ) ------
> router ------ RH6.1 PoPToP
> 192.168.1.129 ( )
> server
>
> 209.35.159.52
>
> The RH 6.0 gateway is using ipchains to masquerade my home network.
> I have added the rules to accept and forward TCP port 1723 and IP
> protocol 47.
> A tcpdump on the PoPToP server and the public interface of the Gateway
> shows that the Gateway is throwing ICMP no-route packets for proto47
> back to the PoPToP server.
>
> What am I missing?
Take a look at http://seawall.sourceforge.net/PPTP.html.
-Tom
--
Tom Eastep \ Eastep's First Principle of Computing:
ICQ #60745924 \ "Any sane computer will tell you how it
teastep at evergo.net \ works if you ask it the proper questions"
Shoreline, Washington USA \___________________________________________
More information about the pptp-server
mailing list