[pptp-server] ip-masquerade with ip-chains (security?)

Bo O. Erichsen bo at erichsen.com
Fri Apr 21 09:00:12 CDT 2000

Hi pptp-list.
I've just set up pptp with pppd and ip-chains and it seems to work great..
I couldn't make the ip-chains setup (i read in the howto) to work though.. So 
i'm not sure that my security is up to date..

My set up is:


pptp-clients              fw+pptp               local-net servers   

my rc.firewall is:

/sbin/ipchains -P forward DENY
/sbin/ipchains -A forward -s -j MASQ

/sbin/ipchains -A forward -s -j MASQ

I'm not sure that this setup is secure enough.. i know it works.. because the 
clients can reach local servers and the internet ..
Anybody has any comments?

Bo O. Erichsen

Corp. email: bo at jay.net * Priv. email: bo at erichsen.com
Phone: +45 33 36 63 00 * Direct Call +45 33 36 63 04
Cell phone: +45 26 27 13 42

Frederiksgade 7
1265 KBH K

More information about the pptp-server mailing list